Light

Josh Liburdi photo

jshlbrd Goto Github PK

followers: 67.0 following: 0.0 repos: 46.0 gists: 25.0

Name: Josh Liburdi

Type: User

Company: @brexhq

Bio: infosec person: detection and response, threat hunting, distributed systems.

Josh Liburdi

Reach me on LinkedIn if you want to chat!

📑 Open-Source Software

💡 Substation

Cloud-native, event-driven data pipeline toolkit designed for security and observability teams
Creator and lead developer since early 2021

📂 Strelka

Enterprise scale static file analysis system written in Python & Go
Creator and lead developer from early 2017 to late 2019
Used by Sublime Security, Security Onion, and large organizations like Target

🌐 Zeek

Network security monitoring, analysis, and scripting tool
Contributed the Remote Desktop Protocol (RDP) analyzer in early 2015
Wrote several protocol plugins and scripts from late 2014 to early 2016

📢 Public Presentations

Billions Served: Processing Security Event Logs with the AWS Serverless Stack

Shares challenges and best practices for building large scale data processing systems using the AWS serverless stack
Presented at fwd:cloudsec in mid 2023

Building Better Hunt Data

Describes how low quality data contributes to inefficient threat hunting operations
Presented at the SANS Threat Hunting Summit in late 2021

Beyond AV: Detection-Oriented File Analysis

Advocates for adding detection-oriented file analysis systems to the modern threat detection tech stack
Presented at BSides San Francisco in early 2019

Beyond IDS: Practical Network Hunting

Provides an overview to network-based threat hunting, including tools and techniques
Presented at BSides New York City in early 2016

📝 Writing

Elevating Security Alert Management Using Automation

In-depth overview of building an automated security alert management system
Shared on Medium in early 2023

Structured and Task-Driven Threat Hunting

Explains how to organize threat hunts that are structured and task-driven
Shared on Medium in early 2020

Hunting for PowerShell Using Heatmaps

Details how to programmatically use heatmaps to identify malicious PowerShell across multiple Windows systems
Shared on Medium in early 2017

Josh Liburdi's Projects

awesome-aws

A curated list of awesome Amazon Web Services (AWS) libraries, open source repos, guides, blogs, and other resources. Featuring the Fiery Meter of AWSome.

awesome-bigdata

A curated list of awesome big data frameworks, ressources and other awesomeness.

awesome-cloud-security

🛡️ Awesome Cloud Security Resources ⚔️

awesome-data-engineering

A curated list of data engineering tools for software developers

awesome-etl

A curated list of awesome ETL frameworks, libraries, and software.

awesome-go

A curated list of awesome Go frameworks, libraries and software

awesome-pipeline

A curated list of awesome pipeline toolkits inspired by Awesome Sysadmin

awesome-security

A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.

awesome-serverless

:cloud: A curated list of awesome services, solutions and resources for serverless / nobackend applications.

awesome-streaming

a curated list of awesome streaming frameworks, applications, etc

awesome-threat-detection

✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️

awesome-yara

A curated list of awesome YARA rules, tools, and people.

binpac_quickstart

bro

Bro is a powerful network analysis framework that is much different from the typical IDS you may know. Official mirror of git.bro.org/bro.git .

bro-junk-drawer

Bro Junk Drawer

bro-plugins

A repo for Bro plugins.

bro-plugins-1

Plugins for Bro

bro-scripts

various bro scripts

bro_scripts-1

A collection of bro_scripts and signatures

bsides-sf-2024

cve_2015-1635

cve_2015-1635

detection-engineering-pocket-guide

pocket guide for core detection engineering concepts

go-aggregate

Buffer data in Go!

go-mod-example

goczmq

goczmq is a golang wrapper for CZMQ.

gohash

Simple directory scan and hashing package written in Go.

jshlbrd

jshlbrd.github.io

laikaboss

Laika BOSS: Object Scanning System

laikaboss-modules

1
2

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.