Koen Van Impe's starred repositories
awesome-chatgpt-prompts
This repo includes ChatGPT prompt curation to use ChatGPT better.
awesome-forensics
A curated list of awesome forensic analysis tools and resources
Hunting-Queries-Detection-Rules
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
parsedmarc
A Python package and CLI for parsing aggregate and forensic DMARC reports
ransomwatch
the transparent ransomware claim tracker 🥷🏼🧅🖥️
secret-regex-list
List of regex for scraping secret API keys and juicy information.
EnableWindowsLogSettings
Documentation and scripts to properly enable Windows event logs.
PurpleCloud
A little tool to play with Azure Identity - Azure Active Directory lab creation tool
Threat_Model_Examples
Collection of Threat Models
MDE-DFIR-Resources
A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as KAPE and THOR Cloud and more.
RansomLook
Yet another Ransomware gang tracker
cti-blueprints
CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable reports more consistently and efficiently.
misp-playbooks
MISP Playbooks
jupyter-collection
Collection of Jupyter Notebooks by @fr0gger_
open_scada_dms
This is an open source project for a basic ems/dms scada system. It contains a HMI with vector graphics taylored towards power-scada, and supports an IEC60870-5-104 based IFS. The backend is powered by mongodb for persistence, influxdb for historic data, and redis for the real-time database
SECurityTr8Ker
SECurityTr8Ker monitors the SEC's RSS feed for 8-K filings with cybersecurity incident disclosures.
ail-typo-website
Website for ail-typo-squatting library
MISP-QRADAR-REFERENCE-SET-BUILDER
Pulls IOCs from MISP and adds the to reference sets in QRadar
misp-to-sentinel
Azure function to insert MISP data in to Azure Sentinel
pandora-box
USB Scanning device