thyssenkrupp Cyber Defense Center

pfFocus

Generate meaningful output from your pfSense configuration backup, like Markdown documentation.

mail-security-tester

A testing framework for mail security and filtering solutions.

testssl.sh-webfrontend

Web Frontend for testssl.sh

testssl.sh-masscan

Make TLS/SSL security mass scans with testssl.sh and import results into ElasticSearch

winnti-nmap-script

Nmap Script to scan for Winnti infections

winnti-detector

Network detector for Winnti malware

sysmon-config

Sysmon configuration file template with default high-quality event tracing

winnti-suricata-lua

Suricata rules to detect Winnti communication

net-consolidator

Consolidate, merge and subtract IP lists

pathfinder

Generates a graph of the traceroute information in nmap XML files using graphviz.

cortextester

Inspired by cortexutils - a testing framework for Cortex-Analyzers and -Responders

nessus-report-downloader

VulntoES

Vulnerability Data in ES

assemblyline-base

Base components for Assemblyline 4 (Datastore, ODM, Filestore, Remote Datatypes, utils function, etc...)

assemblyline-service-metadefender

Assemblyline 4 Metadefender API query service

assemblyline-service-vmray

assemblyline-ui

Web interface and APIs for Assemblyline 4

aws-tool-comparison

Overview about existing tools that can be useful for AWS auditing purposes.

Cortex-Analyzers

Fork of the Cortex Analyzers Repository

Cortex4py

Fork of Python API Client for Cortex

cortexutils

Fork of Python Library for Cortex Analyzers

danglingaws

dfirtrack

Deployment fork of DFIRTrack

ecs

Elastic Common Schema

grr

GRR Rapid Response: remote live forensics for incident response

intelmq-tools

Fork of tools for intelmq used as staging area for custom bots

logstash-patterns-core

nessrest

A python library for using the new Nessus REST API.

otrs

Development fork of the OTRS ticket management system from

velociraptor

Digging Deeper....