hafenschiffer

followers

following

stars

hafenschiffer's starred repositories

amass

In-depth attack surface mapping and asset discovery

Language:GoNOASSERTION11609 210 643

Reverse-Engineering

A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.

Language:AssemblyApache-2.010734 292 9

unredacter

Never ever ever use pixelation as a redaction technique

Language:TypeScriptGPL-3.07676 69 28

DetectionLab

Automate the creation of a lab environment complete with security tooling and logging best practices

Language:HTMLMIT4579 152 598

pacu

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

Language:PythonBSD-3-Clause4221 109 125

Lists

Primary Block Lists

Language:JavaScriptUnlicense3520 68 952

SecretScanner

:unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock:

Language:GoMIT3018 51 41

chainsaw

Rapidly Search and Hunt through Windows Forensic Artefacts

Language:RustGPL-3.02648 51 91

CloudPentestCheatsheets

This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.

pingcastle

PingCastle - Get Active Directory Security at 80% in 20% of the time

Language:C#NOASSERTION2234 63 194

malware_training_vol1

Materials for Windows Malware Analysis training (volume 1)

Language:Assembly1903 156 20

Microsoft-365-Defender-Hunting-Queries

Sample queries for Advanced hunting in Microsoft 365 Defender

Language:Jupyter NotebookMIT1896 198 36

Security-Datasets

Re-play Security Events

Language:PowerShellMIT1574 93 37

cset

Cybersecurity Evaluation Tool

Language:TSQLMIT1384 78 142

Awesome-CobaltStrike-Defence

Defences against Cobalt Strike

security_content

Splunk Security Content

Language:PythonApache-2.01214 69 259

vsaq

VSAQ is an interactive questionnaire application to assess the security programs of third parties.

Language:JavaScriptApache-2.0838 920

PurpleSharp

PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monitored Windows environments

Language:C#BSD-3-Clause757 31 6

Threat-Hunting-and-Detection

Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).

Language:Jupyter NotebookBSD-3-Clause576 28 4

jenkins-attack-framework

Language:PythonMIT551 170

sysmon-cheatsheet

All sysmon event types and their fields explained

spotifeed

A simple service to serve up Spotify podcasts as RSS feeds for use in any podcast app.

Language:RubyMIT473 23 30

password-list

Password lists with top passwords to optimize bruteforce attacks

GPL-3.0301 110

logging-essentials

A Windows event logging and collection baseline focused on finding balance between forensic value and optimising retention.

Apache-2.0252 18 1

ShodanTools

Collection of scripts & fingerprinting tricks for Shodan.io

Language:Python239 14 1

pd-actions

Continuous recon and vulnerability assessment using Github Actions.

MIT20600

blue-teaming-with-kql

Repository with Sample KQL Query examples for Threat Hunting

MIT196 100

CONVEX

CONVEX is a group of CTFs that are independently deployable into participant Azure environments.

Language:PowerShellMIT137 100

KilledProcessCanary

A canary designed to minimize the impact from certain Ransomware actors

Language:C#AGPL-3.09900

backdoors-and-breaches-pcio

A port of BHIS's Backdoors & Breaches for playingcards.io

GPL-3.059 6 2