colindix's starred repositories
MasterParser
MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
owa-honeypot
A basic flask based Outlook Web Honey pot
malwoverview
Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT.
signator-rules
Collection of rules created using YARA-Signator over Malpedia
Open-Source-YARA-rules
YARA Rules I come across on the internet
VMwareCloak
A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analysis.
python-evtx
Pure Python parser for Windows Event Log files (.evtx)
fraud-bridge
ICMP and DNS tunneling via IPv4 and IPv6
passivedns
A network sniffer that logs all DNS server replies for use in a passive DNS setup
go-dnscollector
Ingesting, pipelining, and enhancing your DNS logs with usage indicators, security analysis, and additional metadata.
velociraptor-docker
Docker image for Velocidex Velociraptor
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
ActionPacks
Public PowerShell script gallery for ScriptRunner.
Public-Intelligence-Feeds
Standard-Format Threat Intelligence Feeds
malware-samples
Malware samples, analysis exercises and other interesting resources.