Template-Driven AV/EDR Evasion Framework

Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.

Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups

Main Sigma Rule Repository

JSON DataSet for macOS mapped to MITRE ATT&CK Tactics.

A Linux Auditd rule set mapped to MITRE's Attack Framework

TrustedSec Sysinternals Sysmon Community Guide

Cloud Security Posture Management (CSPM)

Open Cloud Security Posture Management Engine

OpenCSPM Community Controls

Data augmentation for NLP

GCP CIS 1.1.0 Benchmark InSpec Profile

GCP PCI-DSS 3.2.1 InSpec Profile

All about bug bounty (bypasses, payloads, and etc)

A repository of sysmon configuration modules

Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources

This chef cookbook provides numerous security-related configurations, providing all-round base protection.

InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark

GCP Auto Remediation Suite for High Risk Events

AVML - Acquire Volatile Memory for Linux

Malware samples, analysis exercises and other interesting resources.

In-depth attack surface mapping and asset discovery

Turn any program that uses STDIN/STDOUT into a WebSocket server. Like inetd, but for WebSockets.

Sysmon configuration file template with default high-quality event tracing

A Simple Ransomware Vaccine

TODS: An Automated Time-series Outlier Detection System

Create actionable data from your Vulnerability Scans