Craig Ingram's starred repositories
BlockBlock
BlockBlock provides continual protection by monitoring persistence locations.
k8s-sniff-https
A simple mitmproxy blueprint to intercept HTTPS traffic from app running on Kubernetes
CTI-Analyst-Challenge
An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.
container-escape-check
docker container escape check || Docker 容器逃逸检测
PrivescCheck
Privilege Escalation Enumeration Script for Windows
kubelet-csr-approver
Kubernetes controller to enable automatic kubelet CSR validation after a series of (configurable) security checks
panther-analysis
Built-in Panther detection rules and policies
pentest-arsenal
A collection of tools that I use in CTF's or for assessments
browser-learning
Games and exercises to learn about browsers and security
easy-move-resize
Adds "modifier key + mouse drag" move and resize to OSX
InternalAllTheThings
Active Directory and Internal Pentest Cheatsheets
ghidra_SavePatch
A Ghidra script to save small patches back to the executable file
detection-rules
Collection of YARA-L 2.0 sample rules for the Chronicle Detection API
eks-auditing-bot-module
Terraform module to set up alerts detecting manual actions using SNS. Monitors EKS Audit Logs and notifies subscribed operators when manual changes occur in the cluster
Learning-C
A series of mini-projects used to learn C for beginners
C-from-Scratch
A roadmap to learn C from Scratch