Everything around the topic of KQL in Azure.

example queries for learning the kusto language

Repository with Sample KQL Query examples for Threat Hunting

KQL queries for Advanced Hunting

Kusto Query Language is a simple and productive language for querying Big Data.

Collection of KQL queries

This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), ar…

Digital Forensics Investigation Platform

Linux Runtime Security and Forensics using eBPF

GRR Rapid Response: remote live forensics for incident response

PowerForensics provides an all in one platform for live disk forensic analysis

Rekall Memory Forensic Framework

Dshell is a network forensic analysis framework.

Github of the FaceForensics dataset

This is a Project Designed for Security Analysts and all SOC audiences who wants to play with implementation and explore the Modern SOC architecture.

Quick SOC L1 ticket structure

The SOC Analysts all-in-one CLI tool to automate and speed up workflow.

One of the most powerful DDoS Tool on the planet, Highly Interactive and User friendly to use. Based on Golang/Python HULK DoS. Now with GUI. Windows, MacOS, Linux.

🛡 I2P: End-to-End encrypted and anonymous Internet

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readines…

Windows anti-forensics USB monitoring tool.

❄️ PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction

Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by law enforcement, military, and corporate examiners to invest…

androidqf (Android Quick Forensics) helps quickly gathering forensic evidence from Android devices, in order to identify potential traces of compromise.

The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digi…

« usbkill » is an anti-forensic kill-switch that waits for a change on your USB ports and then immediately shuts down your computer.

Learning Python for Forensics, Second Edition, Published by Packt

Major tools used for Digital Forensic Investigation, includes tools used for Image, Audio, Memory, Network and Disk Image data analysis. Helpful resource for CTF Challenges.

Tools and packages that are used for countering forensic activities, including encryption, steganography, and anything that modify attributes. This all includes tools to work with anything in gener…