Windows 10 (v1803+) ActivitiesCache.db parsers (SQLite, PowerShell, .EXE)

Win 10/11 related research

A tool to perform Sequential Import Chaining

Windows Remote Administration Tool via Telegram

Contains all the "handout" materials for my Python Jumpstart by Building 10 Apps course. This includes try it yourself and finished versions of the 10 apps.

My personal hacklab, create your own.

Automate the creation of a lab environment complete with security tooling and logging best practices

Red Team Tips as posted by @vysecurity on Twitter

CVE-2017-8759 - A vulnerability in the SOAP WDSL parser.

Bro IDS + ELK Stack to detect and block data exfiltration

Generates malicious LNK file payloads for data exfiltration

Tenzir is the data pipeline engine for security teams.

A tool to store and reload open windows and window positions for x11 desktops like unity and gnome.

Removed according to regulations

Lists of sources and utilities utilized to hunt, detect and prevent evildoers.

Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.

Defund the Police.

Interactive cli tool for HTTP inspection

Netflow processing tools

VirusTotal tools

Table analysis in Tkinter using pandas DataFrames.

Content from DEFCON BroCTF

Modular tool to test exfiltration techniques.

Scapy Presentation and Code

My Presentations in PDF

Scripts that are suited for blue teams

Scripts I use during pentest engagements.

Registry Explorer bookmark definitions

Bash script for to increase or decrease the mouse and touchpad speed and the RSI-tool typebreak