neoddong6

followers

following

stars

neoddong6's starred repositories

AD-Attack-Defense

Attack and defend active directory using modern post exploitation adversary tradecraft activity

FIR

Fast Incident Response

Language:PythonGPL-3.0169600

CDIR

CDIR (Cyber Defense Institute Incident Response) Collector - live collection tool based on oss tool/library

Language:CGPL-2.015200

PowerShell-Suite

My musings with PowerShell

Language:PowerShellBSD-3-Clause257400

superset

Apache Superset is a Data Visualization and Data Exploration Platform

Language:TypeScriptApache-2.06032700

RedELK

Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.

Language:PythonBSD-3-Clause231800

ATTACK-Tools

Utilities for MITRE™ ATT&CK

Language:HTML100300

GhostTunnel

GhostTunnel is a covert backdoor transmission method that can be used in an isolated environment.

Language:C31900

Github-Hunter

This tool is for sensitive information searching on Github - The Fast Version here: https://github.com/Hell0W0rld0/Github_Hunter_By_Golang

Language:Python39900

awssecurity

for AWS Security material

mquery

YARA malware query accelerator (web frontend)

Language:PythonAGPL-3.040400

AllTools

All reasonably stable tools

MIT109000

EQGRP

Decrypted content of eqgrp-auction-file.tar.xz

Language:Perl408600

ios-triage

incident response tool for iOS devices

Language:JavaScriptMIT5000

RegexHub

A collection of useful regex patterns

Language:JavaScriptMIT227500

arkime

Arkime is an open source, large scale, full packet capturing, indexing, and database system.

Language:JavaScriptApache-2.0618200

needle

The iOS Security Testing Framework

Language:PythonNOASSERTION131700

EhTrace

ATrace is a tool for tracing execution of binaries on Windows.

Language:C++23600

Tools

dForensics Tools

Language:Batchfile2200

PSRecon

:rocket: PSRecon gathers data from a remote Windows host using PowerShell (v2 or later), organizes the data into folders, hashes all extracted data, hashes PowerShell and various system properties, and sends the data off to the security team. The data can be pushed to a share, sent over email, or retained locally.

Language:PowerShellApache-2.047400

PowerForensics

PowerForensics provides an all in one platform for live disk forensic analysis

Language:C#MIT136800

awesome-sec-talks

A collected list of awesome security talks

APTnotes

Various public documents, whitepapers and articles about APT campaigns

pyew

Official repository for Pyew.

Language:PythonGPL-2.038000

zarp

Network Attack Tool

Language:PythonNOASSERTION141800

smalisca

Static Code Analysis for Smali files

Language:PythonNOASSERTION31500

Loki

Loki - Simple IOC and YARA Scanner

Language:PythonGPL-3.0328400

Yara

Yara rules

4700

Shell-Detector

Shell Detector – is a application that helps you find and identify php/cgi(perl)/asp/aspx shells. Shell Detector has a “web shells” signature database that helps to identify “web shell” up to 99%.

Language:Python40000

process-forest

Reconstruct process trees from event logs

Language:PythonApache-2.014300