A set of Bash scripts that allows you to repeatably collect and compare baseline audit data from Linux and Windows systems
☆20Oct 19, 2013Updated 12 years ago
Alternatives and similar repositories for Audit_Host-Baseline
Users that are interested in Audit_Host-Baseline are comparing it to the libraries listed below
Sorting:
- Script to enabled DNS Debug Logging across Domain Controllers in a Forest and then retrieve for analysis☆14May 27, 2016Updated 9 years ago
- Network Defender Toolkit☆18Jun 11, 2013Updated 12 years ago
- Specific guidance and configuration scripts based on Microsoft-recommended security configuration baselines for Windows.☆14Aug 22, 2020Updated 5 years ago
- Notes and reference for ongoing forecasting.☆16Mar 24, 2022Updated 3 years ago
- InvestigationPlaybookSpec☆71Sep 26, 2017Updated 8 years ago
- Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon☆44Jan 31, 2021Updated 5 years ago
- DEPRECATED! LOOK AT CREDNINJA! A tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a …☆15Jun 24, 2016Updated 9 years ago
- Stochastic Traffic Factoring Utility☆16Nov 5, 2016Updated 9 years ago
- Set of PoC for exploits for QRadar SIEM☆15Jan 14, 2018Updated 8 years ago
- A Python library for being a CND Batman....☆35Oct 29, 2015Updated 10 years ago
- Random scripts posted for my blog at http://aka.ms/goateepfe☆25Mar 30, 2017Updated 8 years ago
- Expert Investigation Guides☆51Mar 18, 2021Updated 4 years ago
- Tool for analysis of Windows Prefetch files☆26Nov 11, 2018Updated 7 years ago
- A collection of typical false positive indicators☆56Dec 5, 2020Updated 5 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆55Jul 1, 2022Updated 3 years ago
- read the docs version of risk management☆27Mar 6, 2023Updated 2 years ago
- Slides and Other Resources from my latest Talks and Presentations☆24Sep 17, 2025Updated 5 months ago
- Flood Shield is a very fast http flood blocker☆29Apr 21, 2015Updated 10 years ago
- Presentation Slides☆26Jun 7, 2019Updated 6 years ago
- ircollect☆31Aug 7, 2013Updated 12 years ago
- The Digital First Aid Kit has moved to Gitlab:☆110Jul 19, 2019Updated 6 years ago
- Automatic attack detector and botnet classifier☆28Jan 10, 2017Updated 9 years ago
- Accompanying PowerShell Modules for DevSec Defense Presentation☆30Apr 15, 2018Updated 7 years ago
- VPS infrastructure found in HT dumps☆26Jul 10, 2015Updated 10 years ago
- Sandbox feature upgrade with the help of wrapped samples☆76Jun 23, 2018Updated 7 years ago
- This python scripts can calculate the WHOIS Similarity Distance between two given domains.☆29Dec 8, 2022Updated 3 years ago
- File integrity monitor with malware detection using machine learning☆14May 23, 2024Updated last year
- ☆29Aug 9, 2016Updated 9 years ago
- ☆27Jul 18, 2017Updated 8 years ago
- Simple Powershell scripts to collect all Windows Event Logs from a host and parse them into one CSV timeline.☆32Oct 13, 2018Updated 7 years ago
- DEPRECATED USE v3!☆59Sep 8, 2015Updated 10 years ago
- Bluewall is a firewall framework designed for offensive and defensive cyber professionals.☆106Apr 7, 2019Updated 6 years ago
- Potiron - Normalize, Index and Visualize Network Capture☆88Mar 1, 2019Updated 7 years ago
- All the Power with no Shell☆33Dec 13, 2021Updated 4 years ago
- Memory forensics of virtualization environments☆48Oct 4, 2014Updated 11 years ago
- Office365 Log Analysis Framework☆81Jun 6, 2019Updated 6 years ago
- SEC599 supporting GitHub repository☆16Sep 14, 2019Updated 6 years ago
- Invoke-LiveResponse☆150Feb 22, 2022Updated 4 years ago
- the fastest way to consume threat intelligence.☆30Mar 9, 2023Updated 2 years ago