Online resources related to Detection Engineering. Detection rules, detection logic, attack samples, detection tests and emulation tools, logging configuration and best practices, event log refere…

Sigma rule specification

Main Sigma Rule Repository

Cloud-native SIEM for intelligent security analytics for your entire enterprise.

Splunk Security Content

Sample queries for Advanced hunting in Microsoft 365 Defender

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

A PoC backdoor that uses Gmail as a C&C server

A collection of awesome Command & Control (C2) frameworks, tools and resources for post-exploitation and red teaming assignments.

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

Free Security and Hacking eBooks

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

TrustedSec Sysinternals Sysmon Community Guide

Resources To Learn And Understand SIGMA Rules

A curated list of resources about detecting threats and defending Kubernetes systems.

Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifyin…

match command-line arguments to their help text

Publications from Trail of Bits

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Red Teaming & Pentesting checklists for various engagements

This is my repo for all my THM related writeups

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

Play with fluids in your browser (works even on mobile)

Small and highly portable detection tests based on MITRE's ATT&CK.

Developing experimental scripts to be used to search for crypto wallets and send the information to a C2 server that would be set up. Still a work in progress and will be unleashed to the people of…

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

Volatility 3.0 development