radizzle's repositories
Awesome-KAPE
A curated list of KAPE-related resources
binwalk
Firmware Analysis Tool
blue-team-wiki
Tools, techniques, cheat sheets, and other resources to assist those defending organizations and detecting adversaries
BlueTeam-Tools
Tools and Techniques for Blue Team / Incident Response
WSL
Issues found on WSL
capa
The FLARE team's open-source tool to identify capabilities in executable files.
capa-rules
Standard collection of rules for capa: the tool for enumerating the capabilities of programs
chainsaw
Rapidly Search and Hunt through Windows Event Logs
DeTTECT
Detect Tactics, Techniques & Combat Threats
docker-splunk
Splunk Docker GitHub Repository
EVTX-ATTACK-SAMPLES
Windows Events Attack Samples
flare-floss
FireEye Labs Obfuscated String Solver - Automatically extract obfuscated strings from malware.
hunter
A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.
LOLBAS
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
neofetch
🖼️ A command-line system information tool written in bash 3.2+
nmap-vulners
NSE script based on Vulners.com API
Noriben
Noriben - Portable, Simple, Malware Analysis Sandbox
orochi
The Volatility Collaborative GUI
osquery
SQL powered operating system instrumentation, monitoring, and analytics.
Penetraion-Testing-Methodology
This repo contains my pentesting template that I have used in PWK and for current assessments. The template has been formatted to be used in Joplin
pestudio-cli
Python tool to analyze PE file for patterns used by malware
splunk
Docker container for Splunk based on Alpine designed for OpenShift and unRAID
strelka
Real-time, container-based file scanning at enterprise scale
sysmon-config
Sysmon configuration file template with default high-quality event tracing
sysmon-modular
A repository of sysmon configuration modules
ThreatHunting
An informational repo about hunting for adversaries in your IT environment.
Universal-Winlogbeat-configuration
Universal Winlogbeat configuration
velociraptor
Digging Deeper....
WinPmem
The multi-platform memory acquisition tool.