yk's starred repositories
aws-eks-best-practices
A best practices guide for day 2 operations, including operational excellence, security, reliability, performance efficiency, and cost optimization.
PersistenceSniper
Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made with ❤️ by @last0x00 and @dottor_morte
awesome-detection-engineering
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
DataSurgeon
Quickly Extracts IP's, Email Addresses, Hashes, Files, Credit Cards, Social Security Numbers and a lot More From Text
MemProcFS-Analyzer
MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
shell-backdoor
all shell backdoor in the world
Yara-rules
Collection of private Yara rules.
managed-kubernetes-auditing-toolkit
All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
security-response-automation
Take automated actions against threats and vulnerabilities.
concealed_code_execution
Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows
jupyter-collection
Collection of Jupyter Notebooks by @fr0gger_
logscale-community-content
This repository contains Community and Field contributed content for LogScale
AzDetectSuite
A collection of ARM-based detections for Azure/AzureAD based TTPs
aws-cheatsheet
A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.
Evtx_Log_Browser
Evtx Log (xml) Browser