RepoTele – Hunting Abused Telegram Accounts The following is a part of my talk called “Leveraging Yara Rules to Hunt for Abused Telegram Accounts”, that script is the second step in my research to...
ADCollector ADCollector is a lightweight tool that enumerates the Active Directory environment to identify possible attack vectors. It will give you a basic understanding of the configuration/deployment of the environment as a starting point....
Crescendo Crescendo is a swift based, real-time event viewer for macOS. It utilizes Apple’s Endpoint Security Framework. Apple has introduced some new security mechanisms that we need to enable to get Crescendo running. Ensure...
Configuration Hardening Assessment PowerShell Script (CHAPS) CHAPS is a PowerShell script for checking system security settings where additional software and assessment tools, such as Microsoft Policy Analyzer, cannot be installed. The purpose of this...
authelia Authelia is an open-source authentication and authorization server providing 2-factor authentication and single sign-on (SSO) for your applications via a web portal. It acts as a companion of reverse proxies like nginx, Traefik or HAProxy to let them...
Elemental Elemental is a centralized threat library of MITRE ATT&CK techniques, Atomic Red Team tests, and over 280 Sigma rules. It provides an alternative way to explore the ATT&CK dataset, mapping relevant Atomic Red...
OSSEM A tool to assess data quality, built on top of the awesome OSSEM project. Mission Answer the question: I want to start hunting ATT&CK techniques, what log sources and events are more suitable? Create transparency...
Parsec Parsec is free software (AGPL v3) aiming at easily share your work and data in the cloud in total privacy thanks to cryptographic security. Key features: Works like a virtual drive on your...
OWASP Threat Dragon Threat Dragon is a free, open-source, cross-platform threat modeling application including system diagramming and a rule engine to auto-generate threats/mitigations. It is an OWASP Incubator Project. The focus of the project is on great UX,...
harbian-audit Hardening Hardened Debian GNU/Linux and CentOS 8 distro auditing. The main test environment is in Debian GNU/Linux 9/10 and CentOS 8, and other versions are not fully tested. There are no implementations of...
AutoResponder Carbon Black Response IR tool for hunting threats in an environment AutoResponder is a tool aimed to help people to carry out their Incident Response tasks WITH the help of Carbon Black Response’s...
Analyzer Analyzer is an open-source threat intelligence framework that automates extracting artifacts and IOCs from file/dump into a readable format. The main tool called (QManager) that interacted with the rest of them through Pipes,...
awspx awspx is a graph-based tool for visualizing effective access and resource relationships within AWS. It resolves policy information to determine what actions affect which resources while taking into account how these actions may be combined to produce...
The computer has become a part of your life. Without accessing the computer it is very hard to live our life. In every business organization, the role of computers is undeniable. Most of the...
OSSEM The Open Source Security Events Metadata (OSSEM) is a community-led project that focuses primarily on the documentation and standardization of security event logs from diverse data sources and operating systems. Security events are...
Secure Your Connection
