n0jam / gcp-ctf-workshop
☆28Updated 3 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for gcp-ctf-workshop
- Repository that contains a set of purposefully erroneous Yara rules.☆48Updated 10 months ago
- This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs☆36Updated last month
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆42Updated 3 weeks ago
- Anvilogic Forge☆86Updated this week
- Azure Activity Log Axe is a continually developing tool that simplifies the transactional log format provided by Microsoft. The tool leve…☆22Updated 2 months ago
- This repository contains the research and components of our research into using Sigma for AWS Incident Response.☆24Updated last year
- pocket guide for core detection engineering concepts☆27Updated last year
- ☆37Updated 2 months ago
- Permiso Security has created a tool to query snowflake environments for evidence of compromise, based on indicators from Permiso and the …☆62Updated 4 months ago
- A PoC to Simulate Ransomware Attack on AWS Environment☆26Updated 3 weeks ago
- Collection of Docker honeypot logs from 2021 - 2024☆35Updated last month
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners☆51Updated 2 weeks ago
- A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.☆61Updated 6 months ago
- ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).☆92Updated last month
- ☆36Updated 6 months ago
- A POC to implement Detection-as-Code with Terraform and Sumo Logic.☆25Updated last year
- ☆22Updated this week
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆82Updated 10 months ago
- Independently deploy customized honeyservices in AWS to trigger alerts on unauthorized access. It utilizes a dedicated CloudTrail for pre…☆43Updated 6 months ago
- ☆42Updated 2 weeks ago
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- A zero dependency and customizable Python library for scanning Windows and Linux process memory.☆62Updated 9 months ago
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆16Updated 5 months ago
- Repository to archive AWS Documentation for local use☆38Updated 3 weeks ago
- ☆31Updated this week
- Knowledge Report Alert & Normalization Generator☆27Updated 7 months ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆57Updated last year
- ☆40Updated 5 months ago
- This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interesting…☆39Updated 2 months ago
- An LLM and OCR based Indicator of Compromise Extraction Tool☆30Updated 7 months ago