Light

Mohamed Atef photo

0xatef Goto Github PK

followers: 7.0 following: 221.0 repos: 28.0 gists: 0.0

Name: Mohamed Atef

Type: User

Company: NULL

Bio: Sr. Cyber Defense Engineer | SOAR / Automation Engineer | Threat ( Detection / Hunting ) | Python Developer

Twitter: 0xAtef

Location: Somewhere In The Internet

Blog: https://0xatef.github.io/

I'm Mohamed Atef

Sr. Security Analyst Specializing in Threat Detection, Threat Hunting, Incident Response, and Automation

I hold a certification in Threat Hunting (eCTHPv2) and possess practical expertise in leading SOCs, developing processes, use cases, playbooks, and automation workflows, as well as designing Detection rules. My skills include SIEM administration, implementing SOAR solutions, integrating SOCs with automation tools, and proficient scripting.

In the online realm, I am recognized as 0xAtef. My professional passion revolves around SOC operations, Incident Response, Threat Detection, Threat Hunting, Threat Emulation, and SOC Automation, with a specific focus on Blue/Purple teaming. I am also skilled in EDR assessment and C2 framework usage.

I am deeply enthusiastic about development and scripting, particularly in the realm of automation. My core belief is that to effectively protect, you need to understand what you are protecting. I am dedicated to staying well-informed and up-to-date with the latest trends and advancements in the dynamic field of cybersecurity.

Security Projects Overview

github

medium

Website

Website

TryHackMe

Blog posts

Mohamed Atef's Projects

0xatef

0xatef.github.io

atomic-red-team

Small and highly portable detection tests based on MITRE's ATT&CK.

awesome-honeypots

an awesome list of honeypot resources

blue-team-notes

You didn't think I'd go and leave the blue team out, right?

bluespawn

An Active Defense and EDR software to empower Blue Teams

c2-server

A basic c2 / agent.

commando-vm

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. [email protected]

cyberthreathunting

A collection of resources for Threat Hunters - Sponsored by Falcon Guard

empire

Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.

hunter_diary

My own diary notes. Adding the commands, tools, techniques, and resources that I will not memorize.

hunting-new-registered-domains

Hunting Newly Registered Domains

impacket

Impacket is a collection of Python classes for working with network protocols.

list-infosec-encyclopedia

A list of information security related awesome lists and other resources.

malware-iocs

phishing_catcher

Phishing catcher using Certstream

protections-artifacts

Elastic Security detection content for Endpoint

python-auto-clicker

python auto clicker

qrce-rules

These are open source rules that can be utilized with QRadar to detect various types of threats in the environment.

redelk

Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.

sigma

Main Rule Repository

sigma-detection-rules

Set of SIGMA rules (>320) mapped to MITRE Att@k tactic and techniques

sigma-rules

Rules generated from our investigations.

sigma-rules-1

Sigma rules from Joe Security

sigma-specification

Sigma rule specification

sysmon-config

Sysmon configuration file template with default high-quality event tracing

thezoo

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

windows_event_logging

Windows Event Forwarding subscriptions, configuration files and scripts that assist with implementing ACSC's protect publication, Technical Guidance for Windows Event Logging.

1

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.