The Ultimate Information Gathering Toolkit

Documentation and tools to curate Sigma rules for Windows event logs into easier to parse rules.

This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.

https://red.flag.domains publications enriched

yarGen is a generator for YARA rules

Useful Techniques, Tactics, and Procedures for red teamers and defenders, alike!

NFS client written in Go

Defanged Indicator of Compromise (IOC) Extractor.

Simple powershell script to remove stubborn Bluetooth devices

hiding in plain sight: part 2

A simple tool for visually comparing two PDF files

Digital Forensics artifact repository

Jeedom plugin to interface as a client with an MQTT broker.

Graphical program used to map keyboard buttons and mouse controls to a gamepad. Useful for playing games with no gamepad support.

OpenSource Photobooth Webinterface

Windows software for sharing locally connected USB devices to other machines, including Hyper-V guests and WSL 2.

A small crappy script I wrote that converts the Sigma Windows Process Creation events to KQL via PySigma. Designed for CI/CD

Cloudflare Workers urlscan.io submission script

Volatility3 plugins developed and maintained by the community

Collection of my volatility3 plugins

Volatility 3.0 development

Volatility Plugins

Actively hunt for attacker infrastructure by filtering Shodan results with URLScan data.

Baseline a Windows System against LOLBAS

A very simple URL shortner built on top of Cloudflare Workers.

Free, simple, and intuitive online database diagram editor and SQL generator.

Converting your Burp Suite projects into JSON APIs which can be viewed with Swagger editor or imported into Postman.

A forensic open-source parser module for Autopsy that allows extracting the messages, comments, posts, contacts, calendar entries and reactions from a Microsoft Teams IndexedDB LevelDB database.

A toolkit for the post-mortem examination of Docker containers from forensic HDD copies