hossammosttafa

followers

following

stars

Variiance

Cairo

Hossam Mostafa's starred repositories

RpcInvestigator

Exploring RPC interfaces on Windows

Language:C#Apache-2.024500

Grafiki

Threat Hunting tool about Sysmon and graphs

Language:PythonLGPL-3.032800

SIGMA-detection-rules

Set of SIGMA rules (>320) mapped to MITRE ATT&CK tactic and techniques

CC0-1.027900

GHOSTS

GHOSTS is a realistic user simulation framework for cyber simulation, training, and exercise

Language:C#NOASSERTION42800

Loki

Loki - Simple IOC and Incident Response Scanner

Language:PythonGPL-3.0100

EventLogMonitor

EventLogMonitor hooks into Window Event Logs and display the new event as they written to the log.

Language:C#700

Rhaegal

Rhaegal is a tool written in Python 3 used to scan Windows Event Logs for suspicious logs. Rhaegal uses custom rule format to detect suspicious/malicious logs

Language:PythonGPL-3.03800

SDSParser-py

NTFS Security Descriptor Stream ($Secure:$SDS) parser, Python bindings for https://github.com/AbdulRhmanAlfaifi/SDSParser-rs

Language:Rust400

DFIR-Tools

This is the One Stop place where you can find almost all of your Tools of Requirements in DFIR

CC0-1.07000

Sudomy

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Language:ShellMIT192000

subzero

Passive subdomain enumeration tool for bug-bounty hunters & penetration testers.

Language:PythonGPL-3.01400

subtracker

Gain the edge in hidden subdomain discovery with Subtracker.

Language:Shell200

AIL-framework

AIL framework - Analysis Information Leak framework

Language:JavaScriptAGPL-3.0300

IntelOwl

IntelOwl: manage your Threat Intelligence at scale

Language:PythonAGPL-3.0319200

cybersecurity-threat-intelligence

An ongoing & curated collection of awesome software best practices and remediation techniques, libraries and frameworks, E-books and videos, Technical guidelines and important resources about Threat Intelligence.

Apache-2.03300

CTI-Toolbox

Cyber Threat Intelligence - Toolbox

Language:Python5000

Cybercrime-Forums

Cybercrime forums for Cyber Threat Intelligence purpose

6800

cyber_threat_intelligence

Cyber Threat Intelligence Data, Indicators, and Analysis

6800

Open-source-tools-for-CTI

Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

ctifeeds

Cyber Threat Intelligence Feeds

MIT8600

deepdarkCTI

Collection of Cyber Threat Intelligence sources from the deep and dark web

GPL-3.0406900

cti

Cyber Threat Intelligence Repository expressed in STIX 2.0

NOASSERTION167100

opencti

Open Cyber Threat Intelligence Platform

Language:JavaScriptNOASSERTION517200

ctia.github.io

project page for CTIA

100

CTIA-Module-04-Data-Collection-and-Processing-TBD

100

se-ai-hackathon

AI CTIA fun

Language:Python100

ctia-ui

A web-based interface to a Cisco Threat Intel API instance

Language:CSS500

CTIA

Cyber Threat Intelligence Appliance

Language:YARA1100

ctia

Cisco Threat Intelligence API

Language:ClojureEPL-1.06700

Microsoft-Cybersecurity-Pro-Track-Threat-Detection

Microsoft Cybersecurity Pro Track: Threat Detection, by EC-Council

MIT500