Recon InfoSec's repositories
web-traffic-generator
A quick and dirty HTTP/S "organic" traffic generator.
ansible-graylog-modules
Ansible modules for the Graylog API
graylog2thehive
Create alerts in The Hive from your Graylog alerts, to be turned into Hive cases.
ansible-okta-modules
Ansible modules for the Okta API
adversary-emulation-map
Creates an ATT&CK Navigator map of an Adversary Emulation Plan
ansible-nginx-gen
Generates TCP/UDP stream configuration files for NGINX based on the backend servers and ports provided
sigma-to-elastalert
Ansible playbook to convert Sigma rules to ElastAlert rules
ansible-greynoise
Ansible modules for the GreyNoise API
ansible-moloch
Deploys all-in-one Elasticsearch & Moloch
canaries2thehive
Create alerts in The Hive from your Thinkst Canary alerts, to be turned into Hive cases.
query-packs
Ansible role for importing query packs into Kolide (https://kolide.com)
ansible-timesketch-all
Timesketch all-in-one
mailgun2thehive
Simple Python flask app that runs as a web server, and accepts POST requests from your Mailgun routes.
ansible-canarytokens
Ansible role to deploy canarytokens with Docker
geo-ip-visualization
Visualize Geographic IP address information using Python
transfer.sh
Easy and fast file sharing from the command-line.
usp-adapters
LimaCharlie Universal Sensor Protocol (USP) Adapters to ingest from various sources.
canarytools
Subset of Thinkst Canary API for Go
Cortex-Analyzers
Cortex Analyzers Repository
cylance-logs
Flask application that integrates with Cylance Protect API and logs the events.
project-website
The source to opensearch.org
python-limacharlie
Python API for the LimaCharlie.io service.
slack-c2bot
Slack C2bot that executes commands and returns the output.