Yamato-Security / PresentationsLinks
☆18Updated 2 months ago
Alternatives and similar repositories for Presentations
Users that are interested in Presentations are comparing it to the libraries listed below
Sorting:
- Documentation and tools to curate Sigma rules for Windows event logs into easier to parse rules.☆13Updated 4 months ago
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆18Updated last year
- A project that aims to automate Volatility3 at scale with the use of cloud strength and the power of KQL inside ADX.☆16Updated 5 months ago
- ESXi Cyber Security Incident Response Script☆22Updated 9 months ago
- A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.☆34Updated 10 months ago
- Baseline a Windows System against LOLBAS☆27Updated last year
- Threat Simulator for Enterprise Networks☆14Updated 3 years ago
- Hunt for SQLite files used by various applications☆26Updated 2 weeks ago
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆63Updated 2 years ago
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆36Updated last year
- VTC - Velociraptor Timeline Creator☆18Updated last year
- Living off the False Positive!☆37Updated 4 months ago
- An extension of the sigma standard to include security metrics.☆15Updated 2 years ago
- MS Graph Commands and Tools for Blue Teamers☆49Updated last year
- A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.☆27Updated 2 years ago
- ☆22Updated 7 months ago
- An experimental Velociraptor implementation using cloud infrastructure☆25Updated this week
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆31Updated 4 months ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆52Updated 6 months ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 2 years ago
- The Eventlog Compendium is the go-to resource for understanding Windows Event Logs.☆44Updated last month
- Bloodhound Portable for Windows☆51Updated 2 years ago
- ShellSweeping the evil.☆52Updated 11 months ago
- ☆15Updated 3 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- Placeholder for my detection repo and misc detection engineering content☆43Updated last year
- Penguin OS Forensic (or Flight) Recorder☆40Updated 5 months ago
- Send High & New Incidents to The Hive incident management Platform☆18Updated 4 years ago
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Updated 4 months ago
- A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.☆24Updated 2 months ago