rkondracki's repositories
ail-yara-rules
A set of YARA rules for the AIL framework to detect leak or information disclosure
attack_range
A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk
ATTACKdatamap
A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework
AttackSurfaceAnalyzer
Attack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.
Awesome-SOAR
A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.
AZ500-AzureSecurityTechnologies
Microsoft Azure Security Technologies
Azure-AZ-500-Study-Guide
Study Guide for the Microsoft Azure Security Technologies Exam
Azure-AZ-900-Study-Guide
Study Guide for the Microsoft Azure Fundamentals Exam
cribl-training
Cribl Environment for learning LogStream
first-order-model
This repository contains the source code for the paper First Order Motion Model for Image Animation
h4cker
This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.
Licensing
Microsoft 365 licensing diagrams
pytest-splunk-addon
A Dynamic test tool for Splunk Technology Add-ons
Ransomware-Reports
This repo is a collection of Ransomware reports from vendors, researchers, etc.
S3Insights
S3Insights is a platform for efficiently deriving security insights about S3 data through metadata analysis
security-content
Splunk Security Content
sigma
Generic Signature Format for SIEM Systems
smogcloud
Find cloud assets that no one wants exposed 🔎 ☁️
spl-to-kql
The idea is simply to save some quick notes that will make it easier for Splunk users to leverage KQL (Kusto), especially giving projects requiring both technologies (Splunk and Azure/Sentinel) or any other hybrid environments. Feel free to add/suggest entries.
splunk-ansible
Ansible playbooks for configuring and managing Splunk Enterprise and Universal Forwarder deployments
splunk-connect-for-syslog
Splunk Connect for Syslog
splunk-lab-1
Create a lab instance of Splunk for ad hoc data analytics. Includes Splunk's Machine Learning app!
splunk_wineventcode_secanalysis
Beta 1.2 of Windows Event Code Security Analysis app for Splunk.
Stanford_Machine_Learning
Andrew Ng's famous coursera/stanford machine learning course
TA-Sysmon-deploy
Deploy and maintain Symon through the Splunk Deployment Sever
ThreatHunter-Playbook
A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.