Greycel's repositories
APT_CyberCriminal_Campagin_Collections
APT & CyberCriminal Campaign Collection
APTSimulator
A toolset to make a system look as if it was the victim of an APT attack
AtomicThreatProfile
AtomicThreatProfile is a Python script that creates custom adversary profiles for use in Caldera using json formatted data from Control Validation Compass
Automata
Automatic detection engineering technical state compliance
awesome-event-ids
Collection of Event ID ressources useful for Digital Forensics and Incident Response
awesome-honeypots
an awesome list of honeypot resources
awesome-ml-for-cybersecurity
:octocat: Machine Learning for Cyber Security
awesome-osint
:scream: A curated list of amazingly awesome OSINT
aws-customer-playbook-framework
This repository provides sample templates for security playbooks against various scenarios when using Amazon Web Services.
AzureADRecon
AzureADRecon is a tool which gathers information about the Azure Active Directory and generates a report which can provide a holistic picture of the current state of the target environment.
ecs-logstash-mappings
Mapping Corelight or Zeek data to Elastic Common Schema logs
honeycomb_plugins
The plugin repository for Honeycomb, the honeypot framework by Cymmetria
honeypots
25 different honeypots in a single pypi package! (dns, ftp, httpproxy, http, https, imap, mysql, pop3, postgres, redis, smb, smtp, socks5, ssh, telnet, vnc, mssql, elastic, ldap, ntp, memcache, snmp, oracle, sip and irc)
IPChecker
Check reputation of IP/url/hash/file in bulk with mutiple OSINT
Linux-ATX
Useful links on Linux Attack Detection
Logstash
Contains Logstash related content including tons of Logstash configurations
logtest
Build & test new Matano log sources locally using your IDE 🧑💻
matano
Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
Microsoft-eventlog-mindmap
Set of Mindmaps providing a detailed overview of the different #Microsoft auditing capacities for Windows, Exchange, Azure,...
OpenSIEM-Logstash-Parsing
SIEM Logstash parsing for more than hundred technologies
OSSEM-DM
OSSEM Detection Model
PatrowlEngines
PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
python-apps
Apps to be used for Shuffle automation
SIEM
SIEM Tactics, Techiques, and Procedures
sigma
Generic Signature Format for SIEM Systems
Watcher
Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.