Mathias Stuhlmacher's starred repositories
god-mode-rules
God Mode Detection Rules
ansible-collection-hardening
This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL
ADTimeline
Timeline of Active Directory changes with replication metadata
jupyter-notebook-for-incident-response
A library of Incident Response notebooks using Jupyter. We will show how you can leverage pre-defined notebook files to guide your incident responders in identifying, containing, eradicating, and recovering from an incident.
EDR-Telemetry
This project aims to compare and evaluate the telemetry of various EDR products.
FalconFriday
Hunting queries and detections
awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
awesome-pentest-cheat-sheets
Collection of the cheat sheets useful for pentesting
Recover.vim
A Plugin to show a diff, whenever recovering a buffer
Splunk-input-windows-baseline
Provides an advanced input.conf file for Windows and 3rd party related software with more than 70 different event log mapped to the MITRE Att&CK
Windows-Security-Event-ID-Helper
This repository provide a json file for all Windows security Event IDs with lot of useful informations (Categories, GPO, Volume, Recommandations).
UBUNTU22-CIS
Ansible role for Ubuntu22 CIS Baseline
setup-python
Set up your GitHub Actions workflow with a specific version of Python