Lists (6)
Stars
Extract files from Apple devices on Windows, Linux and MacOS. Mostly a wrapper for pymobiledevice3. Creates iTunes-style backups and "advanced logical backups"
Blue Team detection lab created with Terraform and Ansible in Azure.
DFIR LABS - A compilation of challenges that aims to provide practice in simple to advanced concepts in the following topics: Digital Forensics, Incident Response, Malware Analysis and Threat Hunting.
A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.
Search and identify chrome/edge extensions by ID.
AML/CTF/KYC/OFAC Search of global watchlist and sanctions
Signatures and IoCs from public Volexity blog posts.
Ubuntu 18.04 server packer template. Generates VMs configured for VMware Workstation/Fusion
Sigma detection rules for hunting with the threathunting-keywords project
Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!
Linux Logs Parser is a tool designed to parse various log formats found in Linux systems.
Sigma rules converted for direct use with Zircolite
A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs
Some of my publicly available Malware analysis and Reverse engineering.
Self-Hosting Guide. Learn all about locally hosting (on premises & private web servers) and managing software applications by yourself or your organization. Including Cloud, LLMs, WireGuard, Automa…
A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).
A suite of Volatility 3 plugins for memory forensics of Docker containers
Windows setup and configuration via Ansible.
user.js -- Firefox configuration hardening
The Elastic stack (ELK) powered by Ansible
Create your own certification authority with server certificates in a full automated way