Elad Levi's repositories
CyberSecurity
Research, Rules, Books, Tools and more basic stuff you can get anywhere
Trellix-ENS-Expert-Rules
In this repository I'm going to write expert rules I've created and researched in order to build better detection/prevention
Splunk-Rules
Here I'm going to write threat detection rules in SPL
PE-Analyzer-GUI
This Program Analyzes PE Fies Using Python
ScaryMalware
This is a mini-malware I developed in Python as a PoC in order to implement techniques I've learned about
Incident-Response-Powershell
This page contains two Powershell Digital Forensics & Incident Response solutions. The first is a complete incident response script. The second is a page where all the individual incident response commands are listed.
Trellix-SQL
This repository contains SQL queries to collect data from Trellix ePolicy Orchestrator
ExpertRules
This repository contains a set of rules samples that can be directly used with Trellix Endpoint Security, in the Exploit Prevention policy.
chainsaw
Rapidly Search and Hunt through Windows Forensic Artefacts