kernel-mode DLL Injector

Collection of example YARA-L rules for use within Google Security Operations

Collection of detection rules written in YARA-L.

OIDC explained with code snippet

Rapidly Search and Hunt through Windows Forensic Artefacts

A library for fast parse & import of Windows Eventlogs into Elasticsearch.

YABS - a simple bash script to estimate Linux server performance using fio, iperf3, & Geekbench

Windows 10/11 hardening scripts

Generate an ISO image for automated Ubuntu 20.04 desktop installations.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

PoC for CVE-2020-6287, CVE-2020-6286 (SAP RECON vulnerability)

A curated list of Awesome Threat Intelligence resources

DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAR…

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

A connector to push MISP IOCs to Azure Sentinel and Microsoft Defender ATP

Send zabbix audit logs to splunk

A tool for recovering credentials from sniffed PPPoE, RADIUS and L2TPv2 CHAP authentications

A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.

Notes and tools from my experiences reverse engineering firmware

Combined repository of OCF agents from the RHCS and Linux-HA projects

A small set of tools to convert packets from capture files to hash files for use with Hashcat or John the Ripper.

Manul is a coverage-guided parallel fuzzer for open-source and blackbox binaries on Windows, Linux and MacOS

Zabbix Deregister for AWS AutoScaling

Automatically manage Zabbix monitored hosts with AWS SNS

My personal setup scripts

Loads a custom dll in system32 via diaghub.

Enumerate missing KBs and suggest exploits for useful Privilege Escalation vulnerabilities