Xorlent

Easy-Cisco-Backup

The simplest Cisco IOS backup tool

NPS-Log-Visualizer

Parser and visualization tool for Microsoft NPS / RADIUS logs

O365-Monitor

Office365 Hygiene and Account Monitoring Tool

ASN-ThreatFeed

Generates a threat feed IP list from a user-furnished ASN list.

Canary-Cloudflare

Cloudflare workers to receive Thinkst Canary webhooks, generate syslog and IP blocklists, report to AbuseIPDB

Falcon-Contain

CrowdStrike Falcon® Contain GUI for more flexible control over the host containment process.

Fix-Exploitable-DLLs

PowerShell script to find, report, and mitigate (where possible) EXEs with exploitable DLLs

SimpleFIM

Flexible PowerShell-based file integrity monitor with Syslog and Email functionality

539kernel

539kernel is a simple x86 32bit educational kernel which has been written especially for the book "A Journey in Creating an Operating System Kernel" which is available freely on <https://539kernel.com>

AbuseIPDB-Blocklist

Generates threat feed IP list from the AbuseIPDB API

Cybersec-Links

A collection of info and links to various useful cybersecurity resources

Falcon-Installer

CrowdStrike Falcon Windows PowerShell remote/unattended install script

OpenPhish-HostList

Grabs the latest Openphish URL list

Cisco-OSPF-Monitor

Cisco OSPF neighbor health monitoring and network visualization tool

GetCVELinks

Iterates through a specified directory looking for JAR files, outputting a hyperlinked HTML file for quick CVE checks.

HelixML-Worker

Helix.ml / tryhelix.ai CloudFlare Worker Starter Code

HomeSpan

HomeKit Library for the Arduino-ESP32

Microsoft-NPS-to-Syslog

Microsoft NPS / RADIUS syslog streamer

MS-Vulnerable-Driver-List

Convert Microsoft's driver blocklist to a EDR detection hash list for unsupported operating systems (eg. Win 7,8)

PRTG-OIDLIBS

PRTG Custom OID Libraries (MIBs) and Device Templates for various devices

PSGSuite

Powershell module for Google / G Suite API calls wrapped in handy functions. Authentication is established using a service account via P12 key to negate the consent popup and allow for greater handsoff automation capabilities

Random

Miscellaneous stuff

Red-Teaming-TTPs

Risky-EXEs

Maintained list of most commonly abused executables in attacks

SpinalHDL

Scala based HDL

sysmon-modular

A repository of sysmon configuration modules

SysmonCommunityGuide

TrustedSec Sysinternals Sysmon Community Guide

Tenable-IPList

Grabs the latest Tenable cloud scanner list

URLHaus-Hostlist

Grabs the latest URLHaus list

Windows-SRP-Policy-Generator

Generates .pol file for hash-based software restriction group policies