-
elk-detection-lab
An ELK environment containing interesting security datasets.
Shell ★ 136 6y agoExplain → -
WASE
The Web Audit Search Engine - Index and Search HTTP Requests and Responses in Web Application Audits with ElasticSearch
Python ★ 115 5y agoExplain → -
android-nfc-paycardreader
NFC card reader Android app. Currently reads the german GeldKarte and some credit cards.
Java ★ 110 9y agoExplain → -
Log4Pot
A honeypot for the Log4Shell vulnerability (CVE-2021-44228).
Python ★ 94 1y agoExplain → -
logstash-linux
Logstash Configuration for Linux Logs (Authentication, Apache, Mail)
★ 92 6y agoExplain → -
POODLEAttack
PoC implementation of the POODLE attack
Python ★ 70 11y agoExplain → -
EQUEL
An Elasticsearch QUEry Language
Python ★ 58 9y agoExplain → -
Burp-SessionAuthTool ▣
Burp plugin which supports in finding privilege escalation vulnerabilities
Python ★ 42 4y agoExplain → -
sigma-workshop
Elasticsearch/Kibana environment and log data for Sigma workshop
Shell ★ 27 6y agoExplain → -
Clickjacking-Exploit
Clickjacking Proof-of-Concept Exploit
★ 26 5y agoExplain → -
Burp-MissingScannerChecks ▣
Collection of scanner checks missing in Burp
Python ★ 16 4y agoExplain → -
NastyWebHackme
Broken web app intentionally built with pentesting obstacles
Python ★ 16 7y agoExplain → -
mordor ⑂
Re-play Adversarial Techniques
★ 10 6y agoExplain → -
BrowserCrasher
Crash browsers with opensource test suites
HTML ★ 8 5y agoExplain → -
sigma-workshop-operationalization
Workshop "Operationalization of Sigma Rules with Processing Pipelines"
★ 7 1y agoExplain → -
awesome-threat-detection ⑂
A curated list of awesome threat detection and hunting resources
★ 7 8y agoExplain → -
dfirtrack ⑂
DFIRTrack - The Incident Response Tracking Application
HTML ★ 7 7y agoExplain → -
Demo-ClientsideWebAttacks
Demonstration of some client-side web application vulnerabilities (DOM XSS, Clickjacking) and wrong usage of local storage.
JavaScript ★ 7 13y agoExplain → -
HELK ⑂
The Hunting ELK
Shell ★ 5 8y agoExplain → -
CSRF-Multistep
Framework for building multistep CSRF Proof of Concepts
★ 4 11y agoExplain → -
Burp-Randomizer ▣
Randomize parts of requests with a session handling rule action.
Python ★ 3 4y agoExplain → -
infosec-notebooks
Jupyter notebooks for threat hunting and incident response
★ 2 6y agoExplain → -
hashextension
Implementation of the hash extension attack
Python ★ 2 13y agoExplain → -
cycat-taxonomy ⑂
CyCAT.org taxonomies
★ 2 5y agoExplain → -
APTSimulator ⑂
A toolset to make a system look as if it was the victim of an APT attack
Java ★ 2 8y agoExplain → -
postfix-grok-patterns ⑂
Logstash configuration and grok patterns for parsing postfix logging
Ruby ★ 2 8y agoExplain → -
detection-engineering-with-sigma
Detection Engineering with Sigma workshop (2025)
★ 1 2mo agoExplain → -
PoodleCheck ⑂
A standalone check for the POODLE vulnerability based on the PolarSSL library.
C ★ 1 11y agoExplain → -
testssl.sh ⑂
Testing TLS/SSL encryption
Shell ★ 1 10y agoExplain → -
OwnTwitterFilterBubble
Build your Own Twitter Filter Bubble with Deep Learning
Python ★ 1 8y agoExplain → -
mod0BurpUploadScanner ⑂
HTTP file upload scanner for Burp Proxy
Perl ★ 1 8y agoExplain → -
misp-objects ⑂
Definition, description and relationship types of MISP objects
Python ★ 1 7y agoExplain → -
logstash-mail-log ⑂
Logstash patterns and config for postfix, cbpolicyd and spamd.
★ 1 8y agoExplain → -
IntelligentProcessLifecycle ⑂
The Intelligent Process Lifecycle of Active Cyber Defenders
★ 1 5y agoExplain → -
ImageSearch
Script collection that makes my photos searchable
Python ★ 1 4y agoExplain → -
evtx2es ⑂
Import Windows Eventlogs(.evtx) to ElasticSearch.
Python ★ 1 6y agoExplain → -
AVR-RandomStuff
Some tiny programs I coded for Atmel AVR microcontrollers. Sense&pointless, but possibly useful for someone.
C ★ 1 12y agoExplain → -
sleepy-puppy ⑂
Blind Cross-site Scripting Collector and Manager
HTML ★ 1 11y agoExplain → -
cribl-cisco-asa-cleanup ⑂
Drop, Extract, Suppress based on certain ASA codes in lookup tables
★ 0 3d agoExplain → -
rulezet-core ⑂
Rulezet is an open-source web platform for sharing, evaluating, improving, and managing cybersecurity detection rules (YARA, Sigma, Suricata, etc). It aims to foster collaboration among professionals and enthusiasts to improve the quality and reliability of detection rules.
JavaScript ★ 0 1mo agoExplain → -
MISP ⑂
MISP (core software) - Open Source Threat Intelligence and Sharing Platform
★ 0 2mo agoExplain → -
thomaspatzke.github.io
Currently empty page for verification purposes
HTML ★ 0 2y agoExplain → -
munin ⑂
Online hash checker for Virustotal and other services
Python ★ 0 7y agoExplain → -
yubico-pam ⑂
Yubico Pluggable Authentication Module (PAM)
C ★ 0 9y agoExplain → -
paddingoracle-test
No description.
Python ★ 0 13y agoExplain →
No repos match these filters.