Aya is an eBPF library for the Rust programming language, built with a focus on developer experience and operability.

Threat-hunting tool for Linux

The home of the SDDLMaker

Ansible role to install a CALDERA server for LUDUS

ArgFuscator.net is an open-source, stand-alone web application that helps generate obfuscated command lines for common system-native executables.

Invoke-ArgFuscator is an open-source, cross-platform PowerShell module that helps generate obfuscated command-lines for common system-native executables.

Ansible role to install a CALDERA agent for LUDUS

A template for developers to use as a starting point for Ludus ansible roles

Ansible Roles for Ludus

An implementation of a Windows Event Collector server running on GNU/Linux.

The SigmaHQ rule's reference as PDF

The open source Tines / Splunk SOAR alternative for security and IT engineers. Built on simple YAML templates for integrations and response-as-code.

A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk

A very modest Proxmox information retrieval script

Actionable analytics designed to combat threats

Generate malware's artifacts for detection testing

APISR: Anime Production Inspired Real-World Anime Super-Resolution (CVPR 2024)

A rewrite of YARA in Rust.

Plugin interface for THOR APT Scanner

A Github action for use in pySigma backends and pipelines to automatically update the pySigma pinned

Config files for my GitHub profile.

Validates Sigma rules using the JSON schema

Linux Logs Parser is a tool designed to parse various log formats found in Linux systems.

Performance comparison of regular expression engines.

A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs

It's sudo, for Windows