A terminal UI for tshark, inspired by Wireshark

Basic python scripts I use to teach programming concepts

Don't use bookmarks. Minimal collection of resources for designers and front-end developers.

Documentation for ROCK NSM

A collection of open source and commercial tools that aid in red team operations.

wireshark + boundary IPFIX decode patches

Elasticsearch File System Crawler (FS Crawler)

An open-source framework for real-time anomaly detection using Python, ElasticSearch and Kibana

Kali Linux Docker

Cyber Analytics Platform and Examination System (CAPES) Project Page

A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.

A RESTful API frontend for Stenographer

This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.

Paskto - Passive Web Scanner

Open source offensive security platform for red team, by red team.

The pattern matching swiss knife

PowerShell for every system!

remote stenographer request hack

go-audit is an alternative to the auditd daemon that ships with many distros

A curated list of tools for incident response

Distributed & real time digital forensics at the speed of the cloud

GRR Rapid Response: remote live forensics for incident response

Pet ELK builds a fully configured ELK environment for ad-hoc data analysis.

Script to perform bulk local GeoIP lookups (ASN and geo) for IP addresses

Sublime Text Syntax plugin for the Bro scripting language