KnightChaser
Follow
🔭 Threat Hunting & Analysis
Kusto Query Language is a simple and productive language for querying Big Data.
Open Cyber Threat Intelligence Platform
Cloud-native SIEM for intelligent security analytics for your entire enterprise.
Endpoint detection & Malware analysis software
A repository full of malware samples.
Interactive Azure Sentinel Notebooks provides security insights and actions to investigate anomalies and hunt for malicious behaviors.
Digital Forensics artifact repository
Go library for ETW (Event Tracing for Windows) events processing
🕵️♂️ All-in-one OSINT tool for analysing any website
This python program gets all the saved passwords, credit cards and bookmarks from chromium based browsers supports chromium 80 and above!
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
KrabsETW provides a modern C++ wrapper and a .NET wrapper around the low-level ETW trace consumption functions.
A simple System monitor(Sysmon) EVTX inspector; search, visualize, and track Sysmon events
Fast and Lightweight Logs, Metrics and Traces processor for Linux, BSD, OSX and Windows
Windows Local Privilege Escalation Cookbook
All sysmon event types and their fields explained
A red team tool that assists into extracting/dumping master credentials and/or entries from different password managers.
STIX data representing MITRE ATT&CK
Web app that provides basic navigation and annotation of ATT&CK matrices
This is a proof of concept for CVE-2024-20356, a Command Injection vulnerability in Cisco's CIMC.
pySigma Elasticsearch backend
This project aims to compare and evaluate the telemetry of various EDR products.
CVE cache of the official CVE List in CVE JSON 5 format
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
ebpf-go is a pure-Go library to read, modify and load eBPF programs and attach them to various hooks in the Linux kernel.