List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

A curated list of tools for incident response

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

Automate the creation of a lab environment complete with security tooling and logging best practices

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

⭐️ A curated list of awesome forensic analysis tools and resources

IntelOwl: manage your Threat Intelligence at scale

TheHive: a Scalable, Open Source and Free Security Incident Response Platform

Loki - Simple IOC and YARA Scanner

Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management

Rapidly Search and Hunt through Windows Forensic Artefacts

Investigate malicious Windows logon by visualizing and analyzing Windows event log

A repository of sysmon configuration modules

Collaborative forensic timeline analysis

YARA signature and IOC database for my scanners and tools

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Windows Events Attack Samples

A list of cyber-chef recipes and curated links

Your Everyday Threat Intelligence