Tool for assessing on-premises Microsoft servers authentication such as ADFS, Skype, Exchange, and RDWeb

Collection of Cyber Threat Intelligence sources from the deep and dark web

https://blog.bournemouth2600.org/2024/01/local-thread-hijacking.html

Cyber Underground General Intelligence Requirements

The Threat Actor Profile Guide for CTI Analysts

A repository for tracking events related to the MOVEit Transfer Cl0p Campaign

BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.

DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted from malware includes items such as addresses, passwords, fi…

Indexes for SANS Courses and GIAC Certifications

Volatility 3.0 development

Trace Labs OSINT Linux Distribution based on Kali.

Liberating dem proprietary APT implants

An open project to list all publicly known cloud vulnerabilities and CSP security issues

A collection of papers, blogs, and resources that make up the quintessential aspects of cyber threat intelligence

International Cybersecurity Incidents for In-House CTI Analysts #StandWithUkraine #GlorytoUkraine DONATE TO: NOVA UKRAINE at novaukraine.org. Talk content provided by Xena Olsen @ch33r10

AWS API Gateway management tool for creating on the fly HTTP pass-through proxies for unique IP rotation

Collection of YARA rules written during my free time outside of work.

Files vetted, and approved for public release

Tools for investigating Log4j CVE-2021-44228

Sophos-originated indicators-of-compromise from published reports

Operational information regarding the log4shell vulnerabilities in the Log4j logging library.

A collection of intelligence about Log4Shell and its exploitation activity.

Log4j test victim code

A MITRE ATT&CK Lookup Tool

A visualized overview of the Initial Access Broker (IAB) cybercrime landscape

Sample queries for Advanced hunting in Microsoft 365 Defender