Giters
Tony (RandyRandleman)

RandyRandleman

Geek Repo

3

followers

3

following

24

stars

Twitter:@bigt252002

Github PK Tool:Github PK Tool

Tony 's starred repositories

Skadi

Collect, Process, and Hunt with host based data from MacOS, Windows, and Linux

Language:ShellLicense:GPL-3.0Stargazers:487Issues:0Issues:0

unfurl

Extract and Visualize Data from URLs using Unfurl

Language:PythonLicense:Apache-2.0Stargazers:591Issues:0Issues:0

caldera

Automated Adversary Emulation Platform

Language:PythonLicense:Apache-2.0Stargazers:5377Issues:0Issues:0

SansTerminalIndexer

Easily create index of your SANS books

Language:PythonStargazers:12Issues:0Issues:0

Aurora-Incident-Response

Incident Response Documentation made easy. Developed by Incident Responders for Incident Responders

Language:JavaScriptLicense:Apache-2.0Stargazers:744Issues:0Issues:0

Business-Email-Compromise-Guide

The Business Email Compromise Guide sets out to describe 10 steps for performing a Business Email Compromise (BEC) investigation in an Office 365 environment. Each step is intended to guide the process of identifying, collecting and analysing activity associated with BEC intrusions.

Stargazers:217Issues:0Issues:0

Office-365-Extractor

The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)

Language:PowerShellStargazers:205Issues:0Issues:0

DFIR-O365RC

PowerShell module for Office 365 and Azure log collection

Language:PowerShellLicense:GPL-3.0Stargazers:229Issues:0Issues:0

sysmon-config

Sysmon configuration file template with default high-quality event tracing

Stargazers:4657Issues:0Issues:0

Microsoft-365-Defender-Hunting-Queries

Sample queries for Advanced hunting in Microsoft 365 Defender

Language:Jupyter NotebookLicense:MITStargazers:1891Issues:0Issues:0

sansfor509

Public script from SANS FOR509 Enterprise Cloud Incident Response

Language:PythonLicense:GPL-2.0Stargazers:166Issues:0Issues:0

Voltaire

Web application to create indexes for GIAC certification examinations.

Language:JavaScriptStargazers:130Issues:0Issues:0

ALEAPP

Android Logs Events And Protobuf Parser

Language:PythonLicense:MITStargazers:471Issues:0Issues:0

msticpy

Microsoft Threat Intelligence Security Tools

Language:PythonLicense:NOASSERTIONStargazers:1722Issues:0Issues:0

practical-nlp-code

Official Repository for Code associated with 'Practical Natural Language Processing' book by O'Reilly Media

Language:Jupyter NotebookLicense:MITStargazers:1270Issues:0Issues:0

conti-leaks-englished

Google and deepl translated conti leaks, which is shared by a member of the conti ransomware group.

Language:Rich Text FormatStargazers:580Issues:0Issues:0

cyberchef-recipes

Stargazers:17Issues:0Issues:0

mac_apt

macOS (& ios) Artifact Parsing Tool

Language:PythonLicense:MITStargazers:740Issues:0Issues:0

ThreatHunter-Playbook

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

Language:PythonLicense:MITStargazers:3933Issues:0Issues:0

sigma

Main Sigma Rule Repository

Language:PythonLicense:NOASSERTIONStargazers:7888Issues:0Issues:0

evtx

C# based evtx parser with lots of extras

Language:C#License:MITStargazers:258Issues:0Issues:0

KapeDocs

Documentation repository

Language:HTMLLicense:MITStargazers:41Issues:0Issues:0

GuidMapping

Language:C#License:NOASSERTIONStargazers:15Issues:0Issues:0

KapeFiles

This repository serves as a place for community created Targets and Modules for use with KAPE.

License:MITStargazers:625Issues:0Issues:0