Repository of attack and defensive information for Business Email Compromise investigations

Backend for all data schema and automation running OpenTide instances

An online service for converting cyber threat intelligence format, built to promote interoperability and seamless data exchange

Elastic Security detection content for Endpoint

PowerShell Obfuscation Detection Framework

A collection of files with indicators supporting social media posts from Palo Alto Network's Unit 42 team to disseminate timely threat intelligence.

Create actionable data from your Vulnerability Scans

A list of Free Software network services and web applications which can be hosted on your own servers

Personal compilation of APT malware from whitepaper releases, documents and own research

Extracted Yara rules from Windows Defender mpavbase and mpasbase

Awesome list of keywords and artifacts for Threat Hunting sessions

This repo contains some Amsi Bypass methods i found on different Blog Posts.

CVE-2024-21413 PoC for THM Lab

An LLM and OCR based Indicator of Compromise Extraction Tool

This repository contains a variety of plugins and scripts, related to the Volatility framework.

Unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs

🚀 Boost your productivity by previewing and converting Word files easily to markdown.

The Network Execution Tool

Fair-code workflow automation platform with native AI capabilities. Combine visual building with custom code, self-host or cloud, 400+ integrations.

The open-source AIOps and alert management platform

Open Adversarial Exposure Validation Platform

Free and open log management

Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and th…

Windows Events Attack Samples

Interesting APT Report Collection And Some Special IOCs

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections…

IntelOwl: manage your Threat Intelligence at scale

Sysmon configuration file template with default high-quality event tracing