archb1sh0p's starred repositories
awesome-forensics
A curated list of awesome forensic analysis tools and resources
attack_range
A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk
EDR-Telemetry
This project aims to compare and evaluate the telemetry of various EDR products.
flowframes
Flowframes Windows GUI for video interpolation using DAIN (NCNN) or RIFE (CUDA/NCNN)
SharpDPAPI
SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.
saas-attacks
Offensive security drives defensive security. We're sharing a collection of SaaS attack techniques to help defenders understand the threats they face. #nolockdown
BestEdrOfTheMarket
Little user-mode AV/EDR evasion lab for training & learning purposes
FalconHound
FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more automated fashion. It is designed to be used in conjunction with a SIEM or other log aggregation tool.
attack-flow
Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by developing a representation of attack flows, modeling attack flows for a small corpus of incidents, and creating visualization tools to display attack flows.
Microsoft-Extractor-Suite
A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.
Azure-AD-Incident-Response-PowerShell-Module
The Azure Active Directory Incident Response PowerShell module provides a number of tools, developed by the Azure Active Directory Product Group in conjunction with the Microsoft Detection and Response Team (DART), to assist in compromise response.
ilo4_unlock
A toolkit for patching HPE's iLO 4 Firmware with access to previously inaccessible utilities
T95-H616-Malware
"Pre-Owned" malware in ROM for AllWinner H616/H618 & RockChip RK3328 Android TV Boxes
Practical-Threat-Detection-Engineering
Practical Threat Detection Engineering, Published by Packt
MS-Graph-BlueTeam
MS Graph Commands and Tools for Blue Teamers
cve-markdown-charts
A simple tool to create mermaid js markdown charts from CVE IDs and CVE keyword searches.
Get-InjectedThreadEx
Fork of Get-InjectedThread - https://gist.github.com/jaredcatkinson/23905d34537ce4b5b1818c3e6405c1d2
Flux_Capacitor_Mini
Miniature PCB Version of Flux Capacitor.
Decks-and-Resources
Links and useful documents from my presentations
ParrotForce
Azure playbook for automatic evidence collection