gtrikoilis Goto Github PK

atomic-red-team

Small and highly portable detection tests based on MITRE's ATT&CK.

attacksurfaceanalyzer

Attack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.

awesome-linux-attack-forensics-purplelabs

This page is a result of the ongoing hands-on research around advanced Linux attacks, detection and forensics techniques and tools.

aws-automated-incident-response-and-forensics

aws-cloudsaga

AWS CloudSaga - Simulate security events in AWS

ctf-tools

Some setup scripts for security research tools.

ctfd

CTFs as you need them

cyberbattlesim

An experimentation and research platform to investigate the interaction of automated agents in an abstract simulated network environments.

dfirartifactmuseum

The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifact validation processes as well as increase access to artifacts that may no longer be readily available anymore.

dissect

This project is a meta package, it will install all other Dissect modules with the right combination of versions.

from-0-to-research-scientist-resources-guide

Detailed and tailored guide for undergraduate students or anybody want to dig deep into the field of AI with solid foundation.

hoarder

This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole har drive.

iatelligence

IATelligence is a Python script that will extract the IAT of a PE file and request GPT to get more information about the API and the ATT&CK matrix related

irm

Incident Response Methodologies 2022

kpulp

Konrads' Pen-Ultimate (Windows) Log File Parser

kuiper

Digital Forensics Investigation Platform

misc

nishang

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

oletools

oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.

prowler

Prowler is an Open Source Security tool to perform Cloud Security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks.

ransomwhere

A PoC ransomware sample to test out your ransomware response strategy.

rekall

Rekall Memory Forensic Framework

sharpml

Machine Learning Network Share Password Hunting Toolkit

stormspotter

Azure Red Team tool for graphing Azure and Azure Active Directory objects

superpaper

A cross-platform multi monitor wallpaper manager.

untitledgoosetool

Untitled Goose Tool is a robust and flexible hunt and incident response tool that adds novel authentication and data gathering methods in order to run a full investigation against a customer’s Azure Active Directory (AzureAD), Azure, and M365 environments.