Try osquery live in the browser. Runs a real osqueryi shell.

Wazuh running on AWS

PyCanary: CMD line tool to monitor any directory for file access or file changes, log event, send basic alert to user, and dump and process information collected. There is also a background thread monitoring all created processes and logging them for later analysis.

This repository is a mirror of https://gitlab.com/sequence/core

SOC Lab Project - AWS, Elastic, TheHive, MISP, Cortex, Shuffle

An EDR server designed to monitor, detect, and respond to threats on network endpoints.

Integration for Alto Cortex and Web Applications

The goal of this project is to implement core functionalities of an EDR device using a PIC based microcontroller.

BlackhawkLAB - cloud based end point detection and remediation solution

Python Scripts to convert HiRISE .IMG EDR files into a JPEG2000 image file

Carbon Black Fidelis XPS Connector

Summary: The Cybersecurity and Infrastructure Security Agency CISA leads the national effort to understand, manage, and reduce risk to our cyber and physical infrastructure. In response to the Russian Invasion of Ukraine, CISA has been closely monitoring the increased malicious cyber activity and has developed strategies to help mitigate the ris…

ETL project. Using a pandas pipeline to extract, transform, and load data on crowdfunding

For this assignment, I engineered a Postgres database to hold sample employee data from CSV's using an ERD. I then ran queries to retrieve information to learn more about the data set and the structure of this organization. I also used SQLAlchemy, Pandas, and Python to create some visuals of the data in python. The data was queried and retrieved…

Documenting the process of disassembling RCM firmware.

Uses the Damerau-Levenshtein distance to find suspicious tasks running on endpoints in Windows.

Deploying the open-source SIEM/EDR solution, Wazuh and stress testing the capabilities of the platform.

Parsing MITRE EDR Evaluation results