MHaggis/notes external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

MHaggis/notes

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/MHaggis/notes)

Close

MHaggis / notesView on GitHubMore

• External links
• Readme badge

Full of public notes and Utilities

☆133Jan 6, 2026Updated 3 months ago

Alternatives and similar repositories for notes

Users that are interested in notes are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• elastic / sans-dfir-2022

  View on GitHub
  Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"
  ☆11Feb 6, 2025Updated last year
• target / Threat-Hunting

  View on GitHub
  Jupyter notebooks for threat hunting
  ☆60Apr 7, 2026Updated last week
• theaj42 / presentations

  View on GitHub
  ☆17Mar 31, 2026Updated 2 weeks ago
• MHaggis / hunt-detect-prevent

  View on GitHub
  Lists of sources and utilities utilized to hunt, detect and prevent evildoers.
  ☆169Dec 10, 2018Updated 7 years ago
• techspence / ScriptSentry

  View on GitHub
  ScriptSentry finds misconfigured and dangerous logon scripts.
  ☆627Feb 16, 2026Updated last month
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• ReconInfoSec / velociraptor-to-timesketch

  View on GitHub
  ☆14Oct 24, 2024Updated last year
• cyb3rmik3 / MDE-DFIR-Resources

  View on GitHub
  A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as …
  ☆456Feb 18, 2026Updated last month
• s0lari / Decoy-sploit

  View on GitHub
  Bunch of honey related items that spoof/decoy powersploit functions.
  ☆18Apr 23, 2020Updated 5 years ago
• svch0stz / velociraptor-detections

  View on GitHub
  ☆22Jan 31, 2023Updated 3 years ago
• mthcht / ThreatHunting-Keywords

  View on GitHub
  Awesome list of keywords and artifacts for Threat Hunting sessions
  ☆653Aug 4, 2025Updated 8 months ago
• timip / splunk

  View on GitHub
  Splunk Stuffs!
  ☆13Oct 14, 2023Updated 2 years ago
• oloruntolaallbert / MS-Attack-Range

  View on GitHub
  An automated deployment tool that creates instrumented Azure environments with vulnerable systems for simulating attacks and testing Micr…
  ☆64Mar 30, 2026Updated 2 weeks ago
• ConnorShride / box-ps

  View on GitHub
  Powershell sandboxing utility
  ☆19Mar 2, 2026Updated last month
• defensivedepth / Pertinax

  View on GitHub
  Integrating Sysinternals Autoruns’ logs into Security Onion
  ☆31Feb 20, 2024Updated 2 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• Antonlovesdnb / ConstructingDefenseLab

  View on GitHub
  Ludus range for the Constructing Defense Lab
  ☆117Apr 5, 2026Updated last week
• NoelV11 / DFIR-Training

  View on GitHub
  Digital Forensics and Incident Response notes and Autopsy tool walkthrough
  ☆11Feb 3, 2022Updated 4 years ago
• mgreen27 / DetectRaptor

  View on GitHub
  A repository to share publicly available Velociraptor detection content
  ☆202Apr 7, 2026Updated last week
• reprise99 / 4688-sysmon

  View on GitHub
  ☆60Jun 24, 2023Updated 2 years ago
• AlchemicalChef / ADTierModel

  View on GitHub
  This is a powershell module to help implement the AD Tier Model
  ☆15Feb 17, 2026Updated last month
• weslambert / velocistack

  View on GitHub
  ☆54May 14, 2024Updated last year
• FalconForceTeam / FalconHound

  View on GitHub
  FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more automated fashion. It is de…
  ☆819Updated this week
• BushidoUK / Exploring-APT-campaigns

  View on GitHub
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆86Jun 4, 2022Updated 3 years ago
• LETHAL-FORENSICS / Microsoft-Analyzer-Suite

  View on GitHub
  A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID
  ☆583Dec 6, 2025Updated 4 months ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• MHaggis / CBR-Queries

  View on GitHub
  Collection of useful, up to date, Carbon Black Response Queries
  ☆85Oct 23, 2020Updated 5 years ago
• binaryAccess / highway_to_hell

  View on GitHub
  Pwnage
  ☆17Jul 1, 2025Updated 9 months ago
• jonny-jhnson / TelemetrySource

  View on GitHub
  ☆262May 9, 2024Updated last year
• ScarredMonk / SysmonSimulator

  View on GitHub
  Sysmon event simulation utility which can be used to simulate the attacks to generate the Sysmon Event logs for testing the EDR detection…
  ☆867Jan 20, 2022Updated 4 years ago
• f-bader / XDRStoryParser

  View on GitHub
  Visualize Microsoft Defender XDR process trees and security events
  ☆33Aug 24, 2025Updated 7 months ago
• BushidoUK / Abused-Legitimate-Services

  View on GitHub
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆60Oct 28, 2022Updated 3 years ago
• cbwang505 / FilesystemEoPDesktopSystemShell

  View on GitHub
  Folder Or File Delete to Get System Shell on Current Session Desktop
  ☆47Jan 14, 2025Updated last year
• vysecurity / AggressorScripts-1

  View on GitHub
  Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources
  ☆13Jun 24, 2018Updated 7 years ago
• LuccaSA / PingCastle-Notify

  View on GitHub
  Monitor your PingCastle scans to highlight the rule diff between two scans
  ☆158Feb 19, 2026Updated last month
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• S3N4T0R-0X0 / APTs-Adversary-Simulation

  View on GitHub
  This repository contains detailed adversary simulation APT campaigns targeting various critical sectors. Each simulation includes custom …
  ☆1,066Mar 10, 2026Updated last month
• pr0xylife / pr0xylife

  View on GitHub
  Config files for my GitHub profile.
  ☆14May 7, 2023Updated 2 years ago
• lucky-luk3 / Grafiki

  View on GitHub
  Threat Hunting tool about Sysmon and graphs
  ☆339May 28, 2023Updated 2 years ago
• stuhli / awesome-event-ids

  View on GitHub
  Collection of Event ID ressources useful for Digital Forensics and Incident Response
  ☆644Jun 19, 2024Updated last year
• AirbusProtect / AD-Canaries

  View on GitHub
  The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…
  ☆258Nov 24, 2023Updated 2 years ago
• signorrayan / Splunk-Threat-Hunting

  View on GitHub
  This repository contains Splunk queries to hunt some anomalies
  ☆46Jul 28, 2022Updated 3 years ago
• Gr1mmie / WMIEnum

  View on GitHub
  WMI SA stuffs
  ☆30Apr 18, 2022Updated 3 years ago