v4lerio

Valerio Cestrone's starred repositories

Trawler

PowerShell script to help Incident Responders discover potential adversary persistence mechanisms.

Language:PowerShellMIT30100

GraphSpy

Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI

Language:HTMLBSD-3-Clause48100

Open-Source-Threat-Intel-Feeds

This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.

Language:PythonBSD-3-Clause52800

LinkedIn_ThreatIntelligenceCompanies

900

Mail-Injection

📧 [Research] E-Mail Injection: Vulnerable applications

Language:HTML1100

Azure-Red-Team

Azure Security Resources and Notes

Language:PowerShell143800

CTI-Analyst-Challenge

An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.

16900

CyberMonitor-APT_CyberCriminal_Campagin_Collections

Language:JavaScript2900

APT_CyberCriminal_Campagin_Collections

APT & CyberCriminal Campaign Collection

Language:YARA358500

maester

The core repository for the Maester module with helper cmdlets that will be called from the Pester tests.

Language:HTMLMIT25000

xzbot

notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)

Language:Go347900

deepdarkCTI

Collection of Cyber Threat Intelligence sources from the deep and dark web

GPL-3.0413100

A static site generator for data apps, dashboards, reports, and more. Observable Framework combines JavaScript on the front-end for interactive graphics with any language on the back-end for data analysis.

Language:TypeScriptISC224900

DeepFaceLab

DeepFaceLab is the leading software for creating deepfakes.

Language:PythonGPL-3.04645800

mydumbedr

Language:CGPL-3.09700

GraphStrike

Cobalt Strike HTTPS beaconing over Microsoft Graph API

Language:C52800

C3

Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing offensive toolkits.

Language:C++NOASSERTION148300

secure-electron-template

The best way to build Electron apps with security in mind.

Language:JavaScriptMIT162100

CyberChef

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

Language:JavaScriptApache-2.02794200

UK-Critical-Infrastructure

A collection of reports and case studies to understand the threat landscape for UK critical infrastructure

3400

gpt-engineer

OG CLI codegen project. Specify what you want it to build, the AI asks for clarification, and then builds it. Not actively maintained.

Language:PythonMIT5154100

MindMaps

Collection of created MindMaps

MIT14900

LME

Logging Made Easy (LME) is a no-cost and open logging and protective monitoring solution serving all organizations.

Language:PythonNOASSERTION77500

MetaGPT

🌟 The Multi-Agent Framework: First AI Software Company, Towards Natural Language Programming

Language:PythonMIT4204300

indexes

Test case indexes

3200

digital-forensics-lab

Free hands-on digital forensics labs for students and faculty

Language:Jupyter Notebook150200

BadBlood

BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.

Language:PowerShellGPL-3.0197000

detection-rules

Language:PythonNOASSERTION186700