colindix's starred repositories
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
malwoverview
Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT.
passivedns
A network sniffer that logs all DNS server replies for use in a passive DNS setup
malware-samples
Malware samples, analysis exercises and other interesting resources.
python-evtx
Pure Python parser for Windows Event Log files (.evtx)
ActionPacks
Public PowerShell script gallery for ScriptRunner.
MasterParser
MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
Open-Source-YARA-rules
YARA Rules I come across on the internet
VMwareCloak
A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analysis.
fraud-bridge
ICMP and DNS tunneling via IPv4 and IPv6
go-dnscollector
Ingesting, pipelining, and enhancing your DNS logs with usage indicators, security analysis, and additional metadata.
velociraptor-docker
Docker image for Velocidex Velociraptor
signator-rules
Collection of rules created using YARA-Signator over Malpedia
Public-Intelligence-Feeds
Standard-Format Threat Intelligence Feeds
owa-honeypot
A basic flask based Outlook Web Honey pot
PORTALofPi
PORTAL of Pi - RaspberyPi based PORTAL device. Certified UNIX Network Technicians only!