Splunk Hadoop Connect

Web app that provides basic navigation and annotation of ATT&CK matrices

STIX data representing MITRE ATT&CK

This content is analysis and research of the data sources currently listed in ATT&CK.

Cyber Analytics Repository

A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk

Code and resources for Machine Learning for Algorithmic Trading, 2nd edition.

A set of Zeek scripts to detect ATT&CK techniques.

TrackMe - Data tracking system for Splunk admins

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

This is a repository for freq.py and freq_server.py

YARA signature and IOC database for my scanners and tools

Docker files for building Zeek.

C++ parser generator for dissecting protocols & files.

Documentation for Zeek

Cloudera deployment automation with Ansible

DVD embedded Kickstart for RHEL 7 utilizing SCAP Security Guide (SSG) as a hardening script.

DevSecOps Workshop for OpenShift

Security automation content in SCAP, Bash, Ansible, and other formats

STIG for Red Hat Enterprise Linux 8

Production-Grade Container Scheduling and Management

Vagrant is a tool for building and distributing development environments.

Ansible is a radically simple IT automation platform that makes your applications and systems easier to deploy and maintain. Automate everything from code deployment to network configuration to clo…

A modular configuration of Vim and Neovim

Splunk Remote Work Insights - Executive Dashboard

✨ A curated list of awesome threat detection and hunting resources 🕵️‍♂️

pmacct is a small set of multi-purpose passive network monitoring tools [NetFlow IPFIX sFlow libpcap BGP BMP RPKI IGP Streaming Telemetry].