Olaf Hartong's Projects
Config to import applehealth data to ElasticSearch, generate with > https://github.com/tdda/applehealthdata
ATT&CK Remote Threat Hunting Incident Response
A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk
A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework
The source for REST API specifications for Microsoft Azure.
Cloud-native SIEM for intelligent security analytics for your entire enterprise.
ToolsWatch and Black Hat Arsenal selection of badges
A small go tool to upload JSON files to the BloodHound community edition API
Official Black Hat Arsenal Security Tools Repository
Six Degrees of Domain Admin
Data from a BRAWL Automated Adversary Emulation Exercise
Charge Back App for Splunk
After migrating a Cisco ASA config to a Palo Alto config you remain with all these horrible DMINLINE objects, this tool resolves all members and replaces the ogroup object by its members
Cyber Threat Intelligence Repository expressed in STIX 2.0
Expose a lot of MDE telemetry that is not easily accessible in any searchable form
Vagrant & Packer scripts to build a lab environment complete with security tooling and logging best practices
A packer project to quickly have a test / dev / IR box
Decrypted content of odd.tar.xz.gpg, swift.tar.xz.gpg and windows.tar.xz.gpg
Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. iadgov
a simple script written for OSX to restart all network interfaces, clear ARP cache, and flush routes. also includes MAC randomization and protection from ICMP redirect attacks.
An opinionated Go SDK for Azure Resource Manager
Golang keychain package for iOS and macOS
Windows Event Log Killer
ObjectiveC CLI tool for interacting with macOS Keychain
Living Off The Land Drivers
MDE relies on some of the Audit settings to be enabled
OSSEM Detection Model
All my default config stuff for mac