DetectionLab
awesome-osint
DetectionLab | awesome-osint | |
---|---|---|
31 | 44 | |
4,476 | 16,495 | |
- | - | |
4.4 | 7.0 | |
about 1 year ago | 6 days ago | |
HTML | ||
MIT License | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
DetectionLab
-
Cyber Lab Design
I would tell someone they should use a cloud lab like Clong's "Detection Lab" which gives them not only the security aspect but the cloud and engineering aspects as well.
- Home Virtual SIEM Lab Suggestions?
- malware analysis
- Sandbox suggestions for VM isolation & investigations?
- I am kind a lost
-
Work setup
Detection Lab Link: https://github.com/clong/DetectionLab
-
learning splunk. is there a way to "play" with it?
Not sure what your goal with splunk is but I'd recommend Detection lab! Once you get the pre reqs setup, building and tearing down is super easy and you get a pre-baked ad environment to generate logs for you. https://github.com/clong/DetectionLab
-
Tool that automatically generates a realistic office scenario of vms?
I found a great starting point at the repo of DetectionLab : https://github.com/clong/DetectionLab
-
I'm a noob with expensive equipment
While it's true what most are saying, that you don't need a powerful system to learn hacking....... You DO have a valid point that a powerful system enables things a weaker system may not. For example with 64GB of RAM you can run a full network lab simulation such as https://github.com/clong/DetectionLab additionally a solid high end graphics card will let you run things like hashcat a lot faster. In theory you could make a rainbow table. You still need a lot of time to understand all the basics but yeah there's a few cool things you can do with more power it's not ENTIRELY unneeded. I wish I knew about the local defcon group long ago. They're welcoming and some have capture the flags you can play. Understand the various job roles there are in security and figure out which one you like. You get paid to do specific things not just learn about hacking.
-
where does one get experience with SIEM tools
Github DetectioLab
awesome-osint
- OSINT List Repository Including Specialty Search Engines for Use in Penetration Testing and Other Purposes
- Seeking For OSINT Tools
- Hey guys a little upset (divorce post)
-
NAACP sues Minneapolis, alleging covert social media surveillance by cops
You can even get in on the fun yourself!
- Can someone help me understand what is OSINT good for, and also a list of curated resources to get into it?
- What are some good websites for osint??
-
who was in the wrong here?
Linking them together? Probably some form of Open Source Intelligence.
- Learning from and paying the vigilantes
- Hey I'm new not sure if it has been mentioned before but there is a great web based OSINT Resource, tools from EVERY CATEGORY.
-
Maigret: an easy-to-use and powerful OSINT tool for collecting a dossier on a person by username instant from thousands of sites.
Please note that using maigret from github you violate the copyright of the Snoop Project (because its database is illegally used there - the most valuable thing in this software).
What are some alternatives?
DetectionLabELK - DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.
holehe - holehe allows you to check if the mail is used on different sites like twitter, instagram and will retrieve information on sites with the forgotten password function.
vulnerable-AD - Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab
sherlock - 🔎 Hunt down social media accounts by username across social networks
security-onion - Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
seeker - Accurately Locate Smartphones using Social Engineering
Adaz - :wrench: Deploy customizable Active Directory labs in Azure - automatically.
Mastodon - Your self-hosted, globally interconnected microblogging community
DVWA - Damn Vulnerable Web Application (DVWA)
PENTESTING-BIBLE - articles
HELK - The Hunting ELK
social-analyzer - API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites