colindix
Follow
Stars
MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, Th…
The official Python 3 client library for VirusTotal
Collection of rules created using YARA-Signator over Malpedia
YARA Rules I come across on the internet
A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analysis.
Pure Python parser for Windows Event Log files (.evtx)
An automated phishing tool with 30+ templates. This Tool is made for educational purpose only ! Author will not be responsible for any misuse of this toolkit !
A network sniffer that logs all DNS server replies for use in a passive DNS setup
Automation to assess the state of your M365 tenant against CISA's baselines
30 different honeypots in one package! (dhcp, dns, elastic, ftp, http proxy, https proxy, http, https, imap, ipp, irc, ldap, memcache, mssql, mysql, ntp, oracle, pjl, pop3, postgres, rdp, redis, si…
Ingesting, pipelining, and enhancing your DNS logs with usage indicators, security analysis, and additional metadata.
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …
Docker image for Velocidex Velociraptor
Attack Graph Visualizer and Explorer (Active Directory) ...Who's *really* Domain Admin?
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
Script to automate Linux live evidence collection
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Public PowerShell script gallery for ScriptRunner.
Standard-Format Threat Intelligence Feeds
Malware samples, analysis exercises and other interesting resources.