Dollhouse Dollhouse is a tool to audit Google Cloud Platform (GCP). As there are many components in...
Defense
sudo_pair sudo_pair is a plugin for sudo that requires another human to approve and monitor privileged sudo sessions. sudo is...
audit_scripts Scripts to help work with configuration audit files. baseline/create_baseline_audit.py The create_baseline_audit.py script is used to take the values...
Automated Threat Intelligent System An improvised automated threat intelligent system with advanced vulnerability scanners and Opensource Intelligence...
Introduction to Mimikatz Mimikatz is an tool that can get memory from Windows and get plain text...
WindowsSpyBlocker is an application written in Go and delivered as a single executable to block spying and tracking on Windows systems. The...
Security Onion Security Onion is a free and open-source Linux distribution for intrusion detection, enterprise security monitoring,...
NuID Active Directory Hashcheck Tool At a high level, NebulousAD has three functions: Extract user passwords from...
Windows EVTX Samples [More than 130 EVTX examples]: This is a container for windows events samples associated...
A-Detector A-Detector is a software developed to automate the analysis of network anomalies in large dataframes. Thanks...
ioc2rpz Overview DNS is the control plane of the Internet. Usually, DNS is used for good but:...
ManaTI Project Machine Learning for Threat Intuitive Analysis The ManaTI project consists of a front-end web application...
AADInternals AAD Internals is a PowerShell module where I’ve tried to put all the knowledge I’ve gained...
Hacking isn’t only a major concern for corporations, but it’s also a major concern for homes, organizations,...
SysmonHunter An easy ATT&CK-based Sysmon hunting tool, showing in Blackhat USA 2019 Arsenal Install Requirements Elasticsearch Neo4j...