π Blog: http://boredhackerblog.info
ποΈ Notes (unmaintained): https://boredhackerblog.github.io/
π₯οΈ Current project - ProcSearch - https://procsearch.appdev.cyou/ - Query Process data from Malware Sandbox executions
ProcSearch code: https://gist.github.com/BoredHackerBlog/ee35b467389b66728799e259937b2b36
π¦ vmexec - https://github.com/BoredHackerBlog/vmexec - Uploads and executes files in virtual machine similar to malware sandbox
πΈοΈ pins - https://github.com/BoredHackerBlog/pins - dockerized raspberry pi network sensor
π΅οΈ logdetectionlab - https://github.com/BoredHackerBlog/LogDetectionLab - Vagrant AD Lab builder for log-based detection research and development
πΌοΈ littleshot - https://github.com/BoredHackerBlog/littleshot - Tool similar to urlscan for screenshotting sites and having a searchable metadata database
π yara_urlscanner - https://github.com/BoredHackerBlog/yara_urlscanner - similar to littleshot but only scans html with yara
π portwatch2 - https://github.com/BoredHackerBlog/portwatch2 - docker container that periodically nmaps specified assets and provides alerts on changes
πͺ΅ cli_loganalysis - https://github.com/BoredHackerBlog/cli_loganalysis - notes and guide on using command line tools to do log analysis
πΈοΈ homelabsecuritymonitoring - https://boredhackerblog.github.io/homelabsecuritymonitoring/ - notes on homelab security monitoring/log collection with humio
πͺ remotebrowserrunner - https://github.com/BoredHackerBlog/remotebrowserrunner - Python Flask project that spins up a browser container for a defined amount of time
πͺ΅ MITRE ATTACK Windows Events logs (XML) - https://github.com/BoredHackerBlog/mitre_attack_xml_eventlogs/