Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"
☆11Feb 6, 2025Updated last year
Alternatives and similar repositories for sans-dfir-2022
Users that are interested in sans-dfir-2022 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆17Mar 31, 2026Updated last month
- Jupyter notebooks for threat hunting☆61May 16, 2026Updated 2 weeks ago
- Powershell sandboxing utility☆19May 19, 2026Updated last week
- ☆24Aug 30, 2019Updated 6 years ago
- This script will generate hashes (MD5, SHA1, SHA256), submit the MD5 to Virus Total, and produce a text file with the results.☆15Jul 13, 2023Updated 2 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Modified cryptsetup to enable password guessing - https://diverto.github.io/2019/11/18/Cracking-LUKS-passphrases☆18Nov 27, 2019Updated 6 years ago
- This repository is used by FalconForce to release parts of the internal tools used for maintaining, validating and automatically deployin…☆17Mar 10, 2023Updated 3 years ago
- ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…☆181Mar 2, 2026Updated 2 months ago
- A Sigma based detection pipeline☆12Dec 15, 2023Updated 2 years ago
- ☆154Dec 6, 2018Updated 7 years ago
- Help deobfuscate VBScript☆18Jul 1, 2022Updated 3 years ago
- ☆12Apr 22, 2022Updated 4 years ago
- Build K3s image using Packer☆13May 8, 2026Updated 3 weeks ago
- Cyber competition scoring engine☆17Jun 15, 2016Updated 9 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Forensic Analysis Tool for Btrfs File System.☆20Aug 6, 2018Updated 7 years ago
- Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…☆76Jul 13, 2021Updated 4 years ago
- "Fuzzy matching" for SQLite databases☆30Jun 30, 2020Updated 5 years ago
- Quick ESXi Log Parser☆31Oct 20, 2025Updated 7 months ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆40Aug 18, 2022Updated 3 years ago
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Dec 28, 2021Updated 4 years ago
- Wrapper for TSK (Sleuth Kit) Bindings☆11Jan 10, 2023Updated 3 years ago
- A threat sighting collects the behavior of a real threats and the observables used during its engagement.☆12Mar 29, 2022Updated 4 years ago
- A utility to force query DNS over DoH off of CloudFlare API when DNS block is in place☆10Aug 26, 2018Updated 7 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆54Oct 23, 2024Updated last year
- Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proac…☆90Sep 16, 2023Updated 2 years ago
- llama is lightgrep's amazing media analyzer☆16Updated this week
- Full of public notes and Utilities☆133Jan 6, 2026Updated 4 months ago
- Project based on RegRipper, to extract add'l value/pivot points from TLN events file☆90Feb 9, 2025Updated last year
- Parsers for common structures across windows formats.☆12Aug 23, 2023Updated 2 years ago
- ☆24May 6, 2026Updated 3 weeks ago
- Registry timestamp manipulation☆17Feb 26, 2014Updated 12 years ago
- Generates a detailed CSV file containing Sigma Rules statistics for each service or category, and each level, offering a holistic view of…☆10Dec 22, 2023Updated 2 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- ☆18Apr 16, 2015Updated 11 years ago
- ☆33Feb 26, 2022Updated 4 years ago
- Get intelligence info (tags, mitre techniques, yara and more) and find similar malware in a fast and easy way☆20Jun 6, 2022Updated 3 years ago
- A collection of Cortex Analyzers and Responders for TheHive/Cortex☆13Jan 29, 2020Updated 6 years ago
- Serving files with conditions, serverside keying and more.☆18May 26, 2022Updated 4 years ago
- A python script for smart lightbulbs to show how badly you're losing money☆38Apr 28, 2025Updated last year
- Indicators of Normality☆11Jul 22, 2022Updated 3 years ago