security-storm / DarkFalcon
☆27Updated this week
Related projects: ⓘ
- Detect kerberos attacks in pcap files☆27Updated 8 years ago
- Plugins to add funtionality to ProcDOT. http://www.procdot.com☆22Updated 11 months ago
- Comprehensive Pivoting Framework☆20Updated 7 years ago
- Generate ATT&CK Navigator layer file from PowerShell Empire agent logs☆47Updated 6 years ago
- Scripts to help hunt for possible golden/silver TGT tickets☆16Updated 7 years ago
- Python scripts to parse scans.io ssl data and ingest into elasticsearch for searching☆33Updated 8 years ago
- ☆32Updated this week
- This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.☆21Updated 6 years ago
- Splunk App to assist Sysmon Threat Hunting☆38Updated 7 years ago
- Useful Threat Hunting Stuff☆31Updated 4 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 5 years ago
- SilkETW & SilkService☆40Updated 5 years ago
- Open Development projects for TekDefense☆77Updated 7 years ago
- ☆35Updated this week
- Historical Observations of Actionable Reputation Data☆13Updated 6 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆22Updated 7 years ago
- ☆17Updated 7 years ago
- Bro PCAP Processing and Tagging API☆27Updated 6 years ago
- Talk given at DerbyCon and RuxCon 2016☆22Updated 7 years ago
- mindmap created for tools can be used during analysis/investigation☆26Updated 7 years ago
- Some IR notes☆73Updated 8 years ago
- ☆52Updated this week
- A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).☆17Updated 5 years ago
- ☆40Updated this week
- RegRipper wrapper for simplified bulk parsing or registry hives☆10Updated 6 years ago
- ☆22Updated this week
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.☆14Updated 6 years ago
- A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics☆85Updated 6 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆15Updated 3 years ago
- Crack your macros like the math pros.☆33Updated 7 years ago