Personal blog

This Docker Compose configuration sets up an Elastic Stack environment, including Elasticsearch, Kibana, Logstash, Metricbeat, Filebeat, and Suricata, using the specified versions.

MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs

The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and clusters. Inspired by Wireshark, purposely built for Kubernetes

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Create, share, and run runbooks from your terminal.

🏴‍☠️ BST is an ever-evolving collection of 🛠 tools to help in security and administration day to day tasks 😉

Cloud-ops automation runbooks that are ready to use. Build your own automations using the hundreds of drag and drop actions included in the repository. Built on Jupyter Notebooks, our automation platform jumpstarts your SRE RunBook creation. 😎 published by the unSkript community.

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

🤖 Cybersecurity Automation & Investigation Assistant

Plugins for Wazuh Dashboard

OneUptime is the complete open-source observability platform.

Customizable SIEM and XDR powered by Real-Time correlation and Threat Intelligence

On demand query API for https://github.com/davidonzo/Threat-Intel project.

AssemblyLine 4: File triage and malware analysis

Forensic Artifacts Collecting Toolset

Collaborative Incident Response platform

IntelOwl: manage your Threat Intelligence at scale

Triage scripts for Intel-based Macs

This Python script uses the VirusTotal API to check the reputation of IP addresses and domains, fetching detailed security, location, and network information. It ensures necessary output directories are created.