The Fully Customizable Desktop Environment for Windows 10/11 with a windows tiling manager included.

A resource containing all the tools each ransomware gangs uses

Interesting APT Report Collection And Some Special IOC

Azure Sentinel KQL

VM detection library and tool

PurpleLab is an efficient and readily deployable lab solution, providing a swift setup for cybersecurity professionals to test detection rules, simulate logs, and undertake various security tasks,…

An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.

Google IP Search Engine

Threat Hunting query in Microsoft 365 Defender, XDR. Provide out-of-the-box KQL hunting queries - App, Email, Identity and Endpoint.

Utilities for Sysmon

Collection of YARA-L 2.0 sample rules for the Chronicle Detection API

A curated list of tools for incident response. With repository stars⭐ and forks🍴

Virtual Machine for Adversary Emulation and Threat Hunting

Collection of handy online tools for developers, with great UX.

A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).

There can be more than Notion and Miro. AFFiNE(pronounced [ə‘fain]) is a next-gen knowledge base that brings planning, sorting and creating all together. Privacy first, open-source, customizable an…

A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as KAPE and THOR Cloud and more.

Tool for interactive command line environments on Linux

Web interface to explore Suricata EVE outputs

AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE ATT&CK framework. The tool generates tailored incident resp…

Awesome list of keywords and artifacts for Threat Hunting sessions

A cyber threat intelligence chatbot that ingested 2200+ reports from vx-underground.

Collection of KQL queries

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

Threat-hunting tool for Linux

Linux Logs Parser is a tool designed to parse various log formats found in Linux systems.

AI-powered tool designed to help producing Threat Intelligence Mindmap.

🕵️‍♂️ All-in-one OSINT tool for analysing any website

Tool written in Rust to perform Password Spraying attacks against Azure/Office 365 accounts