Giters
Nasreddine Bencherchali (nasbench)

nasbench

Geek Repo

366

followers

84

following

294

stars

Company:@NextronSystems @SigmaHQ @magicsword-io

Location:HAL

Home Page:https://nasbench.medium.com/

Twitter:@nas_bench

Github PK Tool:Github PK Tool

Organizations
BlueTeam-Initiative
SigmaHQ

Nasreddine Bencherchali's repositories

SIGMA-Resources

Resources To Learn And Understand SIGMA Rules

Stargazers:160Issues:9Issues:0

Awesome-Detection-Engineering

Resources and Discussions About Detection Engineering

Stargazers:8Issues:1Issues:0

Slides

A collection of my slides and presentations

Stargazers:4Issues:2Issues:0

awesome-event-ids

Collection of Event ID ressources useful for Digital Forensics and Incident Response

License:MITStargazers:2Issues:0Issues:0

DFIRPowerShellScripts

Various PowerShells scripts I've made to automate some of the boring stuff in my everyday DFIR journey!

Language:PowerShellLicense:MITStargazers:2Issues:0Issues:0

LawEnforcementResources

Resources provided by the community that can serve to be useful for Law Enforcement worldwide

License:MITStargazers:2Issues:0Issues:0

Creds

Some usefull Scripts and Executables for Pentest & Forensics

Language:PowerShellStargazers:1Issues:0Issues:0

EDR-Telemetry

This project aims to compare and evaluate the telemetry of various EDR products.

Language:PowerShellStargazers:1Issues:0Issues:0

VanillaWindowsReference

A repo that contains recursive dir listings of a vanilla (clean) install of every Windows OS version to compare and see what's been added with each update.

License:MITStargazers:1Issues:0Issues:0

artifacts

Digital Forensics Artifact Repository

License:Apache-2.0Stargazers:0Issues:0Issues:0

aurora-agent-manual

Aurora Agent User Manual

Language:PythonStargazers:0Issues:0Issues:0

bootloaders

Language:YARALicense:Apache-2.0Stargazers:0Issues:0Issues:0

component-object-model-sample

Sample code for Component Object Model (COM) setup and registration.

Language:C++License:MITStargazers:0Issues:0Issues:0

conference_talks

Slides from various conference talks

Stargazers:0Issues:0Issues:0

cookiecutter-pySigma-backend

pySigma Cookiecutter backend template

License:MITStargazers:0Issues:0Issues:0

evtx-baseline

A repository hosting example goodware evtx logs containing sample software installation and basic user interaction

License:Apache-2.0Stargazers:0Issues:0Issues:0

HijackLibs

Project for tracking publicly disclosed DLL Hijacking opportunities.

License:GPL-3.0Stargazers:0Issues:0Issues:0

LocalPotato

POC CVE-2023-21746

License:MITStargazers:0Issues:0Issues:0

LOLBAS

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Language:XSLTLicense:GPL-3.0Stargazers:0Issues:0Issues:0

munin

Online hash checker for Virustotal and other services

License:Apache-2.0Stargazers:0Issues:0Issues:0

NimPlant

A light-weight first-stage C2 implant written in Nim.

Language:HTMLLicense:MITStargazers:0Issues:0Issues:0

nt5src

Source code of Windows XP (NT5). Leaks are not from me. I just extracted the archive and cabinet files.

Stargazers:0Issues:0Issues:0

OSSEM-DD

OSSEM Data Dictionaries

Language:PythonLicense:MITStargazers:0Issues:0Issues:0

panopticon

A YARA Rule Performance Measurement Tool

Language:YARALicense:MITStargazers:0Issues:0Issues:0

persistence-info.github.io

License:GPL-3.0Stargazers:0Issues:0Issues:0

PersistenceSniper

Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Made with ❤️ by @last0x00

Language:PowerShellLicense:CC0-1.0Stargazers:0Issues:0Issues:0

ProcMonXv2

Process Monitor X v2

License:MITStargazers:0Issues:0Issues:0

Sigma-Rules

Rules generated from our investigations.

License:GPL-3.0Stargazers:0Issues:0Issues:0

signature-base

Signature base for my scanner tools

Language:YARALicense:NOASSERTIONStargazers:0Issues:0Issues:0

VISION-ProcMon

A ProcessMonitor visualization application written in rust.

Language:TypeScriptStargazers:0Issues:0Issues:0