Sublime rules for email attack detection, prevention, and threat hunting.

A fancy self-hosted monitoring tool

IaC Generator

💩🚀 Windows 95 in Electron. Runs on macOS, Linux, and Windows.

Pipeline to process LimaCharlie Velociraptor Triages in Timesketch

Distance tracking for BLE iBeacons in esphome

tdisplay s3 170x320 running esphome using patched tft_espi

A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-purple-teaming-183b7df7a2f4

Tweaks to make Windows 10 less annoying and more usable

A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE ATT&CK® framework.

The multi-platform memory acquisition tool.

Digital Forensics and Incident Response

A PoC ransomware sample to test out your ransomware response strategy.

MemProcFS

Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsacyber

The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifact validation processes as well as increase access to artifa…

A Simple Ransomware Vaccine

2021 Velociraptor Contributor Competition Entry

Configuration guidance for implementing the Windows 10 and Windows Server 2016 DoD Secure Host Baseline settings. #nsacyber

This repository is used for Windows client for IT Pro content on Microsoft Learn.

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Imphash-like calculation on Golang binaries

YARA signature and IOC database for my scanners and tools

Rapidly Search and Hunt through Windows Forensic Artefacts

Documentation site for Velociraptor