kerbalette

velociraptor-artifacts

Generic artifacts for multiple Operating Systems to extend the VQL hunts of Velociraptor

al-khaser

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

ansible-digitalocean

DIgital Ocean Ansible playbooks

AsteroidsRedux

AwsForensicRefresh

dotnetvelociraptor

DOTNET Library for API Calls to Velociraptor

HybridAnalysisNet

virusTotalCmdLine

Small utility to push binaries to VT for analysis

vpsManager

.NET Core project for managing various VPS solutions such as DigitalOcean and Vultr. Can use this for quickly spinning up Virtual Instances for Incident Response investigations.

core

:house_with_garden: Open source home automation that puts local control and privacy first.

DidierStevensSuite

DidierStevensSuite python package

Home-Assistant_Config

BeardedTinker Home Assistant configuration. Feel free to browse, edit, tweak, improve, criticize and suggest.

homebridge

HomeKit support for the impatient

ircapabilities

Incident Response Hierarchy of Needs

koadic

Koadic C3 COM Command & Control - JScript RAT

MemProcFS

The Memory Process File System

Process-Hollowing

Great explanation of Process Hollowing (a Technique often used in Malware)

red_team_tool_countermeasures

rita

Real Intelligence Threat Analytics

sam-bot

Bot to create MISP events from data in Slack

SysmonSimulator

Sysmon event simulation utility which can be used to simulate the attacks to generate the Sysmon Event logs for testing the EDR detections and correlation rules by Blue teams.

TileVania

Unity 2019.2.0f1 Project

velociraptor

Dig Deeper....