unforensicate's starred repositories
v2ray-core
A platform for building proxies to bypass network restrictions.
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
ThreatHunter-Playbook
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
awesome-threat-detection
✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Microsoft-365-Defender-Hunting-Queries
Sample queries for Advanced hunting in Microsoft 365 Defender
osxcollector
A forensic evidence collection & analysis toolkit for OS X
Sentinel-Queries
Collection of KQL queries
log4j-affected-db
A community sourced list of log4j-affected software
LOLDrivers
Living Off The Land Drivers
FalconFriday
Hunting queries and detections
LinuxForensics
Everything related to Linux Forensics
awesome_Threat-Hunting
A curated list of the most important and useful resources about Threat Detection,Hunting and Intelligence.
MalSeclogon
A little tool to play with the Seclogon service
crowdstrike-falcon-queries
A collection of Splunk's Search Processing Language (SPL) for Threat Hunting with CrowdStrike Falcon
ese-analyst
This is a set of tools for doing forensics analysis on Microsoft ESE databases.
Awesome-Regex-Resources
A curated list of Regex Resources. Inspired by other awesome stuff
EventTranscript.db-Research
A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.