A curated list of awesome Memory Forensics for DFIR

articles

Pointing cybersecurity teams to thousands of detection rules and offensive security tests aligned with common attacker techniques

💀 Generate malicious PDF test files for testing phone-home callbacks, SSRF, XSS, NTLM credential theft, and data exfiltration in PDF viewers, converters, and web applications. Can be used with Burp…

Tools for exploring Ubiquiti UniFi inform traffic

Repo for The Crown: Exploratory Analysis of Nim Malware DEF CON 615 talk

LibreNMS Docker image

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

A curated list of Awesome Threat Intelligence resources

Backdrop core code repository.

NSE script based on Vulners.com API

an awesome list of honeypot resources

A completely free, open source and online course about Reverse Engineering iOS Applications.

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

The elementary.io website

A Content Editor for GitHub.

Custom Tools and Notes from my own Penetration Testing Experience

Passive internal reconnaissance tool

Get all my software

The Scorebot Engine is a platform that allows scoring, host checking and other cool stuff

Tool to find CVEs and Exploits.

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

How to Zeek Sysmon Logs!

Fake sshd that logs ip addresses, usernames, and passwords.

Convert exported derpy txt file from enpass into better csv -files (made for importing to 1password but could work for more)

OWASP Web Application Security Testing Checklist

Write Pythonic Code Like a Seasoned Developer video course demo materials.

TensorFlow-based neural network library