Michael E.'s repositories
threatfeed
Rudimentary IP and URL threat feeds sourced from The Fakelabs Project.
guacamole-docker-compose
Build Apache Guacamole using MariaDB and Nginx with docker compose. Utilizes Docker secrets and a persistent database volume.
elasticbeats
This repo contains an optimized version of the winlogbeat configuration based on my research and includes recommendations from private and public sector resources.
SlackBuilds
These are the packages I maintain over at SlackBuilds.org
SpecterDetector
Deploys honey tokens to remote machines using WinRM
3commas-cyber-bots
Some 3Commas helper bots, AltRank, GalaxyScore, Watchlist, Auto-Compound
cheat.sh
the only cheat sheet you need
chk_suids
Perl script that searches for setuid and setgid files and creates a baseline
cowrie-deploy
Ansible role to deploy a cowrie honeypot.
disk-burnin-and-testing
Shell script for burn-in and testing of new or re-purposed drives
dotfiles
a collection of my Linux configuration files.
elastalert2
ElastAlert 2 is a continuation of the original yelp/elastalert project. Pull requests are appreciated!
Event-Forwarding-Guidance
Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsacyber
fasd
Command-line productivity booster, offers quick access to files and directories, inspired by autojump, z and v.
fortilogcsv
Converts Fortigate log exports into CSV
HotelReservation
this program allow user to register, log in, make reservation securely.
misp-training
MISP trainings, threat intel and information sharing training materials with source code
msf-tls-finder
Simple python script that will connect to a target host and check the TLS certificate subject and issuer. If they are the same, it will check the server response body and report if it found a possible meterpreter listener.
onedark.vim
A dark Vim/Neovim color scheme inspired by Atom's One Dark syntax theme.
ovirt-ansible-image-template
Ansible role to create virtual machine template from disk image
pasta
Automate and simplify torrent extraction with Pasta! This bash script takes the hassle out of managing downloaded torrents, providing an elegant solution for extracting content from the supported archive types.
Presentations
I have had the privilege of sharing my knowledge and insights with diverse audiences at various cybersecurity conferences. Through these presentations, I aim to shed light on the intricate challenges we face in securing our digital landscape while offering practical solutions and strategies to stay one step ahead of cyber threats.
rules
Repository of yara rules
shc-nginx-lb
This is an Ansible project that deploys Nginx as a load balancer for a Splunk Search Head Cluster (SHC).
smashthestack.github.io
smashthestack.org
splunkuf-deploy
Splunk Universal Forwarder Ansible role.
zeek-scripts
Bro Network Security Monitor Scripts