indeedsecurity / carbonbeat
event shipper for Carbon Black Defense notifications
☆10Updated 2 years ago
Alternatives and similar repositories for carbonbeat:
Users that are interested in carbonbeat are comparing it to the libraries listed below
- A golang implementation of a prefetch parser.☆19Updated 7 months ago
- Crowdstrike Falcon Host script for iterating through instances to get alert and other relevant data☆13Updated 5 years ago
- SilkETW & SilkService☆40Updated 5 years ago
- Detect kerberos attacks in pcap files☆29Updated 9 years ago
- BloodHound Cypher Queries Ported to a Jupyter Notebook☆53Updated 4 years ago
- Presentation materials for talks I've given.☆20Updated 5 years ago
- Notebooks created to attack and secure Active Directory environments☆27Updated 5 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆27Updated 7 years ago
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- Searches open files shares for password files, database backups, etc. Extend as you see fit☆29Updated 5 years ago
- GoLang Scripting Expert, a repo for template scripts regarding basic golang functions, many with a security focus☆22Updated 4 years ago
- ☆56Updated 4 years ago
- A PowerShell tool which provides an easy way to check for shared passwords between Windows Active Directory accounts☆32Updated 6 years ago
- C# User Simulation☆32Updated 2 years ago
- Code and Slides of my BSides London 2019 presentation about Attacker Emulation using CALDERA☆22Updated 5 years ago
- Rosie the Pivoter☆17Updated 6 years ago
- Proof of concept communications from C# via a web browser process☆21Updated 6 years ago
- splunk_pentest_app☆51Updated 9 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 6 years ago
- ☆30Updated 6 years ago
- various slides and presentations I've worked on☆18Updated last month
- ☆12Updated 7 years ago
- Powershell / C# based cross platform forensic framework based for live incident response☆23Updated 4 years ago
- Cobalt Strike log state tracking, parsing, and storage☆24Updated 5 years ago
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆34Updated 5 years ago
- A cross platform tool for verifying credentials and executing single commands☆32Updated 6 years ago
- Slack/Microsoft Teams notification for new Empire/Meterpreter checkins☆24Updated 5 months ago
- Public rules and samples for various automations through LimaCharlie.io☆12Updated 3 years ago
- Run commands over RDP on massive number of hosts☆11Updated 6 years ago
- Analytics for Accounting logs from Network devices☆17Updated 4 years ago