tuckner's starred repositories
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
textgenrnn
Easily train your own text-generating neural network of any size and complexity on any text dataset with a few lines of code.
DetectionLab
Automate the creation of a lab environment complete with security tooling and logging best practices
AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
Red-Team-Infrastructure-Wiki
Wiki to collect Red Team infrastructure hardening resources
sysmon-modular
A repository of sysmon configuration modules
signature-base
YARA signature and IOC database for my scanners and tools
Microsoft-365-Defender-Hunting-Queries
Sample queries for Advanced hunting in Microsoft 365 Defender
domainhunter
Checks expired domains for categorization/reputation and Archive.org history to determine good candidates for phishing and C2 domain names
windows-event-forwarding
A repository for using windows event forwarding for incident detection and response
chrome-headless-browser-docker
Continuously building Chrome Docker image for Linux.
Packer-Windows10
A Packer build for Windows 10
f5-automation-labs
F5 Super-NetOps Programmability, Automation and DevOps Training Classes
rhsummitlabs-2018
The documentation repository for all Red Hat Summit 2018 Labs. The full labs agenda is online: https://agenda.summit.redhat.com/?Instructor-led%20Lab=0
app_splunk_sysmon_hunter
Splunk App to assist Sysmon Threat Hunting
ex407-study-guide
EX407 Red Hat Certificate of Expertise in Ansible Automation Study Guide
cuckoo_installer
Installer to help with Cuckoo setup
Azure-Log-Analytics-Queries
Queries to parse sysmon event log file with Azure Log Analytics
ansible_demo
Ansible Demonstration Check Point