northshade

followers

following

stars

northshade's starred repositories

paloalto_mplog

Language:PythonMIT100

EZ-Cloud

OC Admin (Formerly EZ-Cloud) - the Open Collector Admin and On-Boarder for Core SIEM

Language:JavaScriptMIT1200

CAPEv2

Malware Configuration And Payload Extraction

Language:PythonNOASSERTION183800

docker-misp

A (nearly) production ready Dockered MISP

Language:ShellGPL-3.022700

misp

Docker image for MISP

Language:PythonGPL-3.010800

VulnWhisperer

Create actionable data from your Vulnerability Scans

Language:PythonApache-2.0134900

guitarpedal

Guitar Pedal for Raspberry pi using Python and PYO library

Language:PythonMIT3400

auditd

Best Practice Auditd Configuration

Apache-2.0144000

NtdsAudit

An Active Directory audit utility

Language:C#MIT38500

flare-vm

A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

Language:PowerShellApache-2.0626700

IntelOwl

IntelOwl: manage your Threat Intelligence at scale

Language:PythonAGPL-3.0351600

RoadApplePi

An elegent "Black Box" solution that can be retrofitted into any car with an OBD(II) port for minimal cost.

Language:JavaScriptGPL-3.023600

CyberChef

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

Language:JavaScriptApache-2.02812600

PcapXray

:snowflake: PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction

Language:PythonGPL-2.0166600

awesome-incident-response

A curated list of tools for incident response

Apache-2.0744200

cuckoo3

Cuckoo 3 is a Python 3 open source automated malware analysis system.

Language:PythonEUPL-1.259200

access-manager

Access Manager provides web-based access to local admin (LAPS) passwords, BitLocker recovery keys, and just-in-time administrative access to Windows computers in a modern, secure, and user-friendly way.

Language:C#NOASSERTION23800

EventLogging

Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment.

Language:PowerShellGPL-3.045200

ldapcherry

Web UI for managing users and groups in multiple directory services.

Language:PythonMIT22300

GoodHound

Uses Sharphound, Bloodhound and Neo4j to produce an actionable list of attack paths for targeted remediation.

Language:Python44200

ADTimeline

Timeline of Active Directory changes with replication metadata

Language:PowerShellGPL-3.046400

PlumHound

Bloodhound Reporting for Blue and Purple Teams

Language:PythonGPL-3.0107200

dnstwist

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

Language:PythonApache-2.0478400

gps-glonass-android-driver

GPS/GLONASS generic android driver (gps.default.so)

Language:C3600

betterscan

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

Language:PythonAGPL-3.077600

packer-plugin-arm-image

Packer plugin for ARM images

Language:GoApache-2.042400

yubikey-manager

Python library and command line tool for configuring any YubiKey over all USB interfaces.

Language:PythonBSD-2-Clause84900

acme2certifier

library implementing ACME server functionality

Language:PythonGPL-3.016000

dispatch

All of the ad-hoc things you're doing to manage incidents today, done for you, and much more!

Language:PythonApache-2.0486900

LogRhythm.Tools

LogRhythm PowerShell Toolkit

Language:PowerShellNOASSERTION4700