🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as an archive.

Sigma rule specification

Firmware for ESP32 Cam modules to be used in Prusa Connect

Logging Made Easy (LME) is a no cost, open source platform that centralizes log collection, enhances threat detection, and enables real-time alerting, helping small to medium-sized organizations se…

Playbooks for SOC Analysts

XMage - Magic Another Game Engine

An unofficial rules engine for the world's greatest card game.

A repository hosting example goodware evtx logs containing sample software installation and basic user interaction

Generic Signature Format for SIEM Systems

A comprehensive collection of cybersecurity information sources, news providers, and security resources.

Syncthing Windows Setup

Utility to convert JSON data (for content you own) from 5etools or pf2etools into Obsidian-friendly Markdown.

Takajō (鷹匠) is a Hayabusa results analyzer.

FUSE driver for APFS (Apple File System)

Converts Sigma detection rules to a Splunk alert configuration.

An opensource sigma conversion tool built using pysigma

Firefox extension for managing tabs and bookmarks in sidebar.

A framework for developing alerting and detection strategies for incident response.

MAL-CL (Malicious Command-Line)

Removes large or troublesome blobs like git-filter-branch does, but faster. And written in Scala

ICS/OT related Wireshark profiles + adding some other (IT or OT related) Open Source Wireshark Profiles

Volatility 3.0 development

Here is my Wireshark Profiles repository. To grab the profiles, click the Release below. These ZIP files contain profiles that can be added to your Wireshark configuration to speed up troubleshooti…

The pattern matching swiss knife

C# based evtx parser with lots of extras

Lnk Explorer Command line edition!!

Automatic and Custom Destinations jump list parser with Windows 10 support