heshamelgebaly

followers

following

stars

heshamelgebaly's starred repositories

nishang

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Language:PowerShellNOASSERTION8789 397 59

sigma

Main Sigma Rule Repository

Language:PythonNOASSERTION8358 344 601

LOLBAS

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Language:XSLTGPL-3.07098 227 99

wifite2

Rewrite of the popular wireless network auditor, "wifite"

Language:PythonGPL-2.06441 345 399

ThreatHunter-Playbook

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

Language:PythonMIT4020 372 33

awesome-forensics

⭐️ A curated list of awesome forensic analysis tools and resources

CC0-1.03987 174 10

velociraptor

Digging Deeper....

Language:GoNOASSERTION2975 74 1177

APTSimulator

A toolset to make a system look as if it was the victim of an APT attack

Language:BatchfileMIT2467 122 9

sandbox-attacksurface-analysis-tools

Set of tools to analyze Windows sandboxes for exposed attack surface.

Language:C#Apache-2.02072 120 35

cti

Cyber Threat Intelligence Repository expressed in STIX 2.0

NOASSERTION1745 160 170

Kansa

A Powershell incident response framework

Language:PowerShellApache-2.01559 142 114

hindsight

Web browser forensics for Google Chrome/Chromium

Language:PythonApache-2.01083 67 86

DumpsterFire

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

Language:PythonMIT995 50 4

Offensive-Resources

A Huge Learning Resources with Labs For Offensive Security Players

SpoolFool

Exploit for CVE-2022-21999 - Windows Print Spooler Elevation of Privilege Vulnerability (LPE)

Language:C#MIT773 15 10

ZSC

OWASP ZSC - Shellcode/Obfuscate Code Generator https://www.secologist.com/

Language:PythonNOASSERTION647 59 69

Xerror

fully automated pentesting tool

Language:CSS504 35 12

ircapabilities

Incident Response Hierarchy of Needs

Python-Honeypot

OWASP Honeypot, Automated Deception Framework.

Language:PythonApache-2.0434 24 73

resilient-community-apps

Source code for IBM SOAR Apps that are available on our App Exchange

Language:ReScriptMIT91 35 31

Sigma-Rule-Repository

Sigma Detection Rule Repository

GPL-3.085 90

qradar

Unofficial third-party scripts, playbooks, and content for IBM QRadar & QRadar Community Edition.

Language:PythonMIT77 140

threatconnect-playbooks

Community driven repository of Playbooks and Apps for ThreatConnect.

Language:PythonApache-2.069 26 15

QRCE-Rules

These are open source rules that can be utilized with QRadar to detect various types of threats in the environment.

Client-GPOs

GPOs for client systems

Unlicense42 40

resilient-scripts

Example scripts and rules for use in Resilient playbooks.

Language:PythonMIT34 19 3

Power-BI

This repository contains Excel data and Power BI Dash Boards

100

awesome-forensics

A curated list of awesome forensic analysis tools and resources

CC0-1.0100

ExcelERP

ERP which serves the needs of instumetational insustry.

Language:C#1 20

ExcelERP

Language:BatchfileMIT1 10