Rename television season episodes and extras organized by disc (folders)

Lookup file hashes, domain names and IP addresses using various vendors to assist with triaging potential threats.

YARA duplicate rule detection and removal. YARA rule index creation. YARA rule file merger.

YARA rules sorted by file type from the Yara-Rules/rules repository

Canary example for encoded vbscript

Deobfuscate various encodings that can be found in web logs.

Threat Intelligence Aggregator API example

This repository is dedicated to documenting different library files (DLLs) susceptible to exploitation through search order hijacking, including side-loading and phantom DLLs

Malformed Access Log to CSV - Convert Web Server Access Logs to CSV

GUI code for VTTL

Takes a list of domains and output one unique domain structure for each unique second (or third) level domain

Search Windows event log and output results to a text file

COM object for performing DNS queries / lookups

PoC YARA scanner for Cylance Optics using .net YARA DLL via IronPython

SentinelOne Blacklist Export

This script will take the CSV output and create a CSV with endpoints grouped by CVE and one with NVD descriptions

Sort YARA Rules by File Type

Vectra Detect API example in Python

Collection of scripts for use with Carbon Black Cb Response API

Select key columns in the CSV to track unique values and produce a condensed output

Process a CSV of tor alerts against the www.dan.me.uk/tornodes list to confirm if the IP and port are listed.

Combine all columns from two Microsoft Excel spreadsheets into one based on matching column values

Trend Micro Anti-Threat Toolkit output parser

Converts dns names to Microsoft DNS debug format. Example: google.com becomes (6)google(3)com(0)

Assess a mounted Windows volume for exploitable vulnerabilities