Lists (1)
Sort Name ascending (A-Z)
Stars
A reference of Windows API function calls, including functions for file operations, process management, memory management, thread management, dynamic-link library (DLL) management, synchronization,…
CrowdSec - the open-source and participative security solution offering crowdsourced protection against malicious IPs and access to the most advanced real-world CTI.
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Multi-services Asynchronous Honeypot Solution with real-time threat detection
Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.
Defences against Cobalt Strike
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
Copy, export, import, delete, document and compare policies and profiles in Intune and Azure with PowerShell script and WPF UI. Import ADMX files and registry settings with ADMX ingestion. View and…
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
Community-driven baseline to accelerate Intune adoption and learning.
This repository contains policy packs which can be used by system management software to configure device platforms (such as Windows 10 and iOS) in accordance with NCSC device security guidance. Th…
PowerShell script to convert GPO settings to SCCM configuration items
Python tool to check rootkits in Windows kernel
Various scripts using open and paid APIs for reconnaissance
Cloud Security Posture Management (CSPM)
Collection of resources related to the Center for Threat-Informed Defense