cudocharles Goto Github PK

anonymize-it

a general utility for anonymizing data

ansible-test-playbooks

ansible-playbook-tests

awesome-python-scripts

A Curated list of Awesome Python Scripts that Automate Stuffs.

awesome-yara

A curated list of awesome YARA rules, tools, and people.

azure-sentinel

Cloud-native SIEM for intelligent security analytics for your entire enterprise.

bash_scripts

Some of my bash scripts

cloudbeat

Analyzing Cloud Security Posture

detection-rule-dump

This is the One Stop place where you can several Detection Rules which can help you to kick start your journey on SIEM, SOC work.

detection-rules

Rules for Elastic Security's detection engine

elastic_customer_architects

Elastic Customer Architect Team Resources

elastic_endpoint_security

Elastic Endpoint Security

endpoint-package

Repo for developing the endpoint package

fbaptiste-python-fundamentals-course

Course materials for my Udemy pbaptiste Python Fundamentals course

fortios-ips-snort

Convert snort IPS signatures to FortiGate custom IPS signature syntax.

heyserial

Programmatically create hunting rules for deserialization exploitation with multiple keywords, gadget chains, object types, encodings, and rule types

i-see-you

ISeeYou is a Bash and Javascript tool to find the exact location of the users during social engineering or phishing engagements. Using exact location coordinates an attacker can perform preliminary reconnaissance which will help them in performing further targeted attacks.

kansa

A Powershell incident response framework

klara

Kaspersky's GReAT KLara

opentelemetry-demo

OpenTelemetry Community Demo Application

protections-artifacts

Elastic Security detection content for Endpoint

py-suricataparser

Pure python parser for Snort/Suricata rules.

pysigma

Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)

pysigma-backend-elasticsearch

pySigma Elasticsearch backend

pysigma-backend-qradar-aql

QRadar AQL backend for converting Sigma rules to QRadar AQL queries

pysigma-backend-splunk

pySigma Splunk backend

python-scripts

A curated list of python scripts for automating your tasks

qrce-rules

These are open source rules that can be utilized with QRadar to detect various types of threats in the environment.

red_team_tool_countermeasures

securityonion

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, and case management. It also includes other tools such as Playbook, osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.

shell-scripts

Shell Scripts to automate the boring stuff!