zam89

Break-In-Analyzer

Break-In Analyzer - A script that analyze auth.log, secure, utmp/wtmp for possible SSH break-in attempts

honeypot-install-script

Honeypot Auto-Install script that install and deploy multiple variant of honeypot automatically with minimal of user interaction.

suricatalogparser

A simple log parser for Suricata log file (JSON)

CVE-2024-3400-pot

Simple honeypot for CVE-2024-3400 Palo Alto PAN-OS Command Injection Vulnerability

pcap2url

Extracting URLs from PCAP file

EZ-Tools-GUI

Making KAPE forensic artifact processing easier

LFAC

Script to automate Linux logs & artifacts collection

Evading-IDS

Scripts for teaching on how to evade IDS using metasploit

ServerSentryBot

Linux server monitoring script for success and failure login (SSHD) via Telegram

VT_Domain_Checker

Check domain in question to VT

Windows-Defender-Quarantine-File-Decryptor

Extract quarantine files from Windows Defender

arpcop

BrowserHistoryParser

Extracts data (table 'downloads', 'keyword_search_terms' & 'urls') from Chromium-based browsers' SQLite database into an Excel file.

CB-Timeliner

Script used to export related CB events into CSV file that related to specific ProcessGUID that currently investigating.

CB_Cloud_Console-Timestamp-Converter

Carbon Black Cloud Console Timestamp Converter - Convert Timestamp into UTC via Chrome Extension

kippo

Kippo is a medium interaction SSH honeypot designed to log brute force attacks and, most importantly, the entire shell interaction performed by the attacker.

lizkebab

Lizard Squad rekt

maduu

urlscanbot

Telegram bot to generate screenshots of given URLs

wargames2017

Question/Challenge during Wargames 2017