dfxgh's starred repositories
win-mal-investigations
Windows Malware Investigation Scripts & Docs
rapid-endpoint-investigations
Scripts for rapid Windows endpoint "tactical triage" and investigations with Velociraptor and KAPE
Microsoft-Extractor-Suite
A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.
GraphRunner
A Post-exploitation Toolset for Interacting with the Microsoft Graph API
CTF-Writeups
Writeups for CTFs I've competed in.
deepdarkCTI
Collection of Cyber Threat Intelligence sources from the deep and dark web
Fallout-terminal-hacking-bash-script-game
A recreation of the fallout terminal in bash script. Happy birthday to my girlfriend!
ugrep
NEW ugrep 5.1: an ultra fast, user-friendly, compatible grep. Ugrep combines the best features of other grep, adds new features, and searches fast. Includes a TUI and adds Google-like search, fuzzy search, hexdumps, searches nested archives (zip, 7z, tar, pax, cpio), compressed files (gz, Z, bz2, lzma, xz, lz4, zstd, brotli), pdfs, docs, and more
volatility
An advanced memory forensics framework
LogonTracer
Investigate malicious Windows logon by visualizing and analyzing Windows event log
ChopChopGo
Rapidly Search and Hunt through Linux Forensics Artifacts
microsoft-365-docs
This repo is used to host the source for the Microsoft 365 documentation on https://docs.microsoft.com.
LinuxForensics
Everything related to Linux Forensics
RapidMalwareAnalysis
Supporting Repo for Huntress 2022 December Tradecraft Tuesday webinar
Linux_Forensic_Harvester
Harvest Linux forensic data for operational triage of an event.
docker-explorer
A tool to help forensicate offline docker acquisitions
hayabusa-rules
Detection rules for Hayabusa
SANS-BlueTeamSummit-2022
Repo to track SANS BlueTeam Summit Presentation