v3g0ps's repositories
AADInternals
AADInternals PowerShell module for administering Azure AD and Office 365
aka
Search for Microsoft's aka.ms links
automa
A chrome extension for automating your browser by connecting blocks
automox-console-sdk-python
Automox Console SDK for Python
capa
The FLARE team's open-source tool to identify capabilities in executable files.
cloudgrep
cloudgrep is grep for cloud storage
collector-templates
Templates for Cribl Stream Collectors
CrowdStream_and_Cribl-Stream_CrowdStrike_Wiki
JSON Configurations for Cribl Stream and CrowdStream
ebpf-beginners
The beginner's guide to eBPF
falconpy
The CrowdStrike Falcon SDK for Python 3
flare-floss
FireEye Labs Obfuscated String Solver - Automatically extract obfuscated strings from malware.
follina.py
POC to replicate the full 'Follina' Office RCE vulnerability for testing purposes
linenote
VSCode extension to add notes to the line of code.
EDR-Preloader
An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer
InsightEngineering
Hardcore Debugging
NextronSystems-CyberChef
CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
nthasher
A fast wordlist to nthash converter
protections-artifacts
Elastic Security detection content for Endpoint
psfalcon
PowerShell for CrowdStrike's OAuth2 APIs
rtr
Real-time Response scripts and schema
security_content
Splunk Security Content
Sentinel-Queries
Collection of KQL queries
sigma
Main Sigma Rule Repository
sliver
Adversary Emulation Framework
SysmonCommunityGuide
TrustedSec Sysinternals Sysmon Community Guide
ThreatPursuit-VM
Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.
webshell
This is a webshell open source project