Hestat's repositories
ossec-sysmon
A Ruleset to enhance detection capabilities of Ossec using Sysmon
soc-threat-hunting
Repo of python/bash scripts for identifying IoC's in threat feed and other online tools
intel-sharing
Repository of Information sharing on threats and indicators
ClamAV-CortexAnalyzer
Analyzer for TheHive Cortex Soc platform. Allows you to run observables against default and custom ClamAV rules.
cryptojacking-scanner
Python scanner for scanning websites for crypto-jacking miners.
drupal-check
Tool to dive Apache logs for evidence of exploitation of CVE-2018-7600
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
cobaltstrike
Code and yara rules to detect and analyze Cobalt Strike
Language:PythonMIT000
Cortex-Analyzers
Cortex Analyzers Repository
dnscat2-powershell
A Powershell client for dnscat2, an encrypted DNS command and control tool.
velociraptor
Digging Deeper....