Nate's starred repositories
GraphRunner
A Post-exploitation Toolset for Interacting with the Microsoft Graph API
AzureAD-incident-response
Notes on responding to security breaches relating to Azure AD
Azure-AD-Incident-Response-PowerShell-Module
The Azure Active Directory Incident Response PowerShell module provides a number of tools, developed by the Azure Active Directory Product Group in conjunction with the Microsoft Detection and Response Team (DART), to assist in compromise response.
OSEP-Code-Snippets
A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
steganography
:see_no_evil: Steganography: Hiding an image inside another
sansfor509
Public script from SANS FOR509 Enterprise Cloud Incident Response
geospatial-intelligence-library
🛰 Your geospatial intelligence tool belt for digital investigations
hunting-rules
Suricata rules for network anomaly detection
wz_mini_hacks
wz camera mods... make your camera better.
offensive-docker
Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.
ultimate-go
The Ultimate Go Study Guide
juicy-potato
A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.
Sentinel-Queries
Collection of KQL queries
Nevermore_Micro
Activated Carbon Filters. Bad smells or fumes, or complaints thereof, should not keep you from being a maker!
RdpCacheStitcher
RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.
Limelighter
A tool for generating fake code signing certificates or signing real ones