svch0stz's repositories
TheThreatHuntLibrary
Library of threat hunts to get any user started!
Abused-Legitimate-Services
Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
Azure
Azure AD Scripts
Beta
Beta versions of my software
CVE-2022-22947
poc for CVE-2022-22947
detection
Detection in the form of Yara, Snort and ClamAV signatures.
DetectRaptor
A repository to share publicly available Velociraptor detection content
go-recyclebin
Go parser for $I files in $Recycle.bin
Grafiki
Threat Hunting tool about Sysmon and graphs
KapeFiles
This repository serves as a place for community created Targets and Modules for use with KAPE.
plaso_filters
Scripts to facilitate filtering with Plaso
RECmd
Command line access to the Registry
sigma
Generic Signature Format for SIEM Systems
signature-base
Signature base for my scanner tools
SQLiteHunter
Hunt for SQLite files used by various applications
sysmon-config
Sysmon configuration file template with default high-quality event tracing
ThreatIngestor
Extract and aggregate threat intelligence.
velociraptor
Digging Deeper....
velociraptor-docs
Documentation site for Velociraptor
Zircolite
A standalone SIGMA-based detection tool for EVTX.