Collection of Cyber Threat Intelligence sources from the deep and dark web

Taxonomies used in MISP taxonomy system and can be used by other information sharing tool.

Clusters and elements to attach to MISP events or attributes (like threat actors)

This repository serves as a place for community created Targets and Modules for use with KAPE.

An archive of ransomware notes past and present

Best Practice Auditd Configuration

A resource containing all the tools each ransomware gangs uses

Documentation site for Velociraptor

Command line access to the Registry

An forensics tool to help aid in the investigation of spoofed emails based off the email headers.

A simple demo of Autofill phishing by abusing the browser autofill feature. This Technique Is Very Old But Still Very helpfull for investigation

Installation

Blockchain Investigation

A Simple script which can convert domains in ip addresses in bulk.

A curated list of Awesome Threat Intelligence Blogs from the DOGESEC community.

Unveiling the Hidden Layers of the Web – A Comprehensive Web Reconnaissance Tool

Windows Forensics Salt States

PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.

Rhaegal is a tool written in Python 3 used to scan Windows Event Logs for suspicious logs. Rhaegal uses custom rule format to detect suspicious/malicious logs

FIT is a Python3 application for forensic acquisition of contents like web pages, emails, social media, etc. directly from the internet.

PowerShell script to help Incident Responders discover adversary persistence mechanisms.

A curated list of awesome social engineering resources.

CPC Windows Forensic Toolset Salt States

A curated list of tools for incident response

Blockchain Transactions Investigation Tool