Jordan Linden's repositories
Inspect-Process
Search a given process for loaded modules with invalid signatures
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
chainsaw
Rapidly Search and Hunt through Windows Forensic Artefacts
geolocate-ips
Geolocate IP addresses with MaxMind's GeoLite2-City database
Get-NetInfo
List current TCP/IP network connections on a host with associated process information
Get-VTReport
Generate file signatures and submit to VirusTotal for detection reports
LOLBAS
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
search-hashes
Search for known bad hashes among hashes collected from multiple systems
translate-scancodes
Translate key scancodes in hexdumps captured from decrypted RDP traffic to human-readable characters
Azure-Sentinel
Cloud-native SIEM for intelligent security analytics for your entire enterprise.
BloodHound
Six Degrees of Domain Admin
commando-vm
Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com
elastic-protections-artifacts
Elastic Security detection content for Endpoint
flameshot
Powerful yet simple to use screenshot software :desktop_computer: :camera_flash:
gophish
Open-Source Phishing Toolkit
hacktricks
Tricks/techniques learned in CTFs, real life apps, and in reading research and news
invoke-atomicredteam
Invoke-AtomicRedTeam is a PowerShell module to execute tests as defined in the [atomics folder](https://github.com/redcanaryco/atomic-red-team/tree/master/atomics) of Red Canary's Atomic Red Team project.
JSONBee
A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.
KDU
Kernel Driver Utility
msLDAPDump
LDAP enumeration tool implemented in Python3
OWASP-CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
PEASS-ng
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
PMAT-labs
Labs for Practical Malware Analysis & Triage
PowerStig
STIG Automation
TheHive4py
Python API Client for TheHive
theZoo
A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
untitledgoosetool
Untitled Goose Tool is a robust and flexible hunt and incident response tool that adds novel authentication and data gathering methods in order to run a full investigation against a customer’s Azure Active Directory (AzureAD), Azure, and M365 environments.