Stars
Vulnerability and security bulletins related to Palantir software products.
A minimalist risk management program!
Scripts for performing and detecting parent PID spoofing
"uMatrix Recipes" is a collection of rules for uMatrix that you can use to fix some popular websites by whitelisting the 3rd-party requests that are critical for the websites to function.
Sample queries for Advanced hunting in Microsoft 365 Defender
Ansible is a radically simple IT automation platform that makes your applications and systems easier to deploy and maintain. Automate everything from code deployment to network configuration to clo…
The Unofficial PowerShell Best Practices and Style Guide
Aggressor scripts I've made for Cobalt Strike
Open Source Vulnerability Management Platform
Python-based utility that uses supervised machine learning to detect phishing domains from the Certificate Transparency log network.
DARKSURGEON is a Windows packer project to empower incident response, digital forensics, malware analysis, and network defense.
Kubernetes Security - Best Practice Guide
Plugin for sudo that requires another human to approve and monitor privileged sudo sessions
A curated list of tools for incident response
PowerShell module for creating and managing Sysinternals Sysmon config files.
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
Small and highly portable detection tests based on MITRE's ATT&CK.
Sysmon configuration file template with default high-quality event tracing
A PowerShell script for helping to find vulnerable settings in AD Group Policy. (deprecated, use Grouper2 instead!)
AutomatedLab is a provisioning solution and framework that lets you deploy complex labs on HyperV and Azure with simple PowerShell scripts. It supports all Windows operating systems from 2008 R2 to…
Backup of my phishing regular expression testing bench
A repository of some of my Windows 10 Device Guard Bypasses
A small client application that uses the Duo Labs EFIgy API to inform you about the state of your Mac EFI firmware
This function runs a number of checks on a system to help provide situational awareness to a penetration tester during the reconnaissance phase. It gathers information about the local system, users…
0x13337 / Bella
Forked from Trietptm-on-Security/BellaA pure python, post-exploitation, data mining tool and remote administration tool for macOS.