frack113's Projects
A Python package is used to execute Atomic Red Team tests (Atomics) across multiple operating system environments.
Small and highly portable detection tests based on MITRE's ATT&CK.
Public Repo for Atomic Test Harness
Helper scripts and configs to be used with Aurora Agent
A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
Config files for my GitHub profile.
Invoke-AtomicRedTeam is a PowerShell module to execute tests as defined in the [atomics folder](https://github.com/redcanaryco/atomic-red-team/tree/master/atomics) of Red Canary's Atomic Red Team project.
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
A simple POC on Sigma Meta Rules
Python library and tools to parse and convert Sigma rules into queries (and whatever else you could imagine)
Datadog pySigma backend
pySigma Elasticsearch backend
pySigma OpenSearch backend
QRadar AQL backend for converting Sigma rules to QRadar AQL queries
pySigma Splunk backend
pySigma SQlite backend
SigmaHQ pySigma Sysmon processing pipeline
Directory of pySigma backends
Unofficial pySigma Yaml pipeline
CERTFR info complete
Mimic a malware in Rust
Generic Signature Format for SIEM Systems
The Sigma command line interface based on pySigma
Sigma rules MITRE Heat Map
Sigma rule specification
Know the coverage of the sigmac backend in relation to the rules