Andreas Hunkeler's repositories
awesome-malware-persistence
A curated list of awesome malware persistence tools and resources.
malware-persistence
Collection of malware persistence and hunting information. Be a persistent persistence hunter!
awesome-security-card-games
A curated list of security card games.
Defensomania
Defensomania is a security monitoring and incident response card game.
SigmaFilterCheck
Check Sigma rules for easy-to-bypass whitelists to make them more robust (https://github.com/SigmaHQ/sigma)
CyberTriad
Cyber Triad or how to spot Antifragility in Cyber Security.
awesome-vulnerabilities
Collection of awesome vulnerabilities
psyposquatter
Check PowerShell packages for similarly named (typosquatted) packages.
ThoughtsOnSecurity
Important writings about (needed) skills and thinking in cyber security.
ArtifactCollectionMatrix
Forensic Artifact Collection Tool Matrix
detections
Threat intelligence and threat detection indicators (IOC, IOA)
Invoke-Forensics
Invoke-Forensics provides PowerShell scripts to simplify working with the forensic tool KAPE. Run KAPE against multiple VHDX images or collecting files from them, use tab-completion to find targets and modules, show the content or search the needed KAPE files based on filters.
malwoverview
Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT.
mkdocs
Project documentation with Markdown.
nishang
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
PackAttack
Collection of software package attacks using typosquatting and dependency confusion.
PowerSponse
PowerSponse is a PowerShell module focused on targeted containment and remediation.
RegRipper3.0
RegRipper3.0
sigmahq.github.io
Official Website Of The Sigma Project
splunk-addon-powershell
Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.
swisscom-csirt-resources
A curated list of analysis tools and resources created or maintained by Swisscom CSIRT.
vim-pester
A Vim plugin for PowerShell Pester (https://github.com/pester/Pester).