Ebryx Labs

All

26 repositories

usmConnect
Public
Checks status of USM sensors via selenium.
Python
•0•1•0•0•Updated Sep 6, 2024Sep 6, 2024
cbSweep
Public
Sweeps IPs in bulk off of carbon black.
Python
•0•1•0•0•Updated Jul 7, 2024Jul 7, 2024
gitSearch
Public
Searches for repositories with keywords and then filter out individual files too.
Python
•0•1•0•0•Updated Jul 7, 2024Jul 7, 2024
__DFIR-scripts
Public
Quick & Dirty DFIR scripts developed by Ebryx DFIR team to keep handy during field assignment
Python
•3•14•0•0•Updated Jul 7, 2024Jul 7, 2024
Scouter
Public
This repository maintains some of the scripts made by Ebryx DevSecOps team.
Python
•
MIT License
•9•0•0•0•Updated Jun 15, 2024Jun 15, 2024
lbWafChecker
Public
Checks WAF association for ALBs and alerts on slack.
Python
•0•1•0•3•Updated Dec 8, 2022Dec 8, 2022
Vetter
Public
Calculate hashes from files and check against VirusTotal (using the PublicAPIV3)
Python
•0•2•0•2•Updated Dec 8, 2022Dec 8, 2022
sentinel-attack
Public
Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK
HCL
•
MIT License
•207•0•0•0•Updated Nov 6, 2020Nov 6, 2020
dnsMonitor
Public
A project to monitor DNS and point out stale values.
Python
•0•4•0•0•Updated Aug 5, 2020Aug 5, 2020
sysmon-config
Public
Sysmon configuration file template with default high-quality event tracing
1.7k•0•0•0•Updated Jul 15, 2020Jul 15, 2020
ip_reputation_checker
Public
For a file containing list of IPs, shares IP reputation results.
Python
•0•1•0•0•Updated Jun 24, 2020Jun 24, 2020
dExter
Public
Checks userdata and launch templates of all EC2s against regexes.
Python
•0•1•0•0•Updated Jun 21, 2019Jun 21, 2019
usm2jira
Public
A project to push AlientVault USM alarms to JIRA automatically.
Python
•
Other
•0•1•0•0•Updated Jun 13, 2019Jun 13, 2019
forestHog
Public
Searches through git repositories for high entropy strings and secrets, digging deep into commit history
Python
•
GNU General Public License v2.0
•1.7k•2•0•0•Updated Jun 10, 2019Jun 10, 2019
elasticsearch-indices-deleter
Public
Easily delete Elasticsearch indices by setting this script as a cron job and managed config file
Python
•
GNU General Public License v3.0
•0•0•0•0•Updated Apr 19, 2019Apr 19, 2019
opencrypt
Public
Symmetric encryption and decryption compatible with openSSL.
Python
•
MIT License
•0•2•0•0•Updated Mar 20, 2019Mar 20, 2019
ebryx
Public
Repo for ebryx python library.
Python
•
MIT License
•0•3•0•0•Updated Mar 20, 2019Mar 20, 2019
cwl-to-es
Public
Send cloudwatch logs to Elasticsearch
Python
•
MIT License
•0•4•0•0•Updated Mar 16, 2019Mar 16, 2019
awsip
Public
A project to check whether an IP address exists in Amazon infrastructure
Python
•
MIT License
•0•3•0•0•Updated Feb 24, 2019Feb 24, 2019
s3_obj_downloader
Public
Script to download objects from an S3 bucket
Python
•0•1•0•0•Updated Jan 20, 2019Jan 20, 2019
auto-elasticsearch
Public
Gets targeted data out of elastic search automatically.
Python
•1•0•0•0•Updated Jan 10, 2019Jan 10, 2019
aws-cloudtrail-to-firehose
Public
Python
•
MIT License
•0•0•0•0•Updated Oct 25, 2018Oct 25, 2018
sysmon-modular
Public
A repository of sysmon configuration modules
PowerShell
•
MIT License
•588•0•0•0•Updated Oct 4, 2018Oct 4, 2018
aws-role_credentials_leakage_monitor
Public
Monitors if the AWS role credentials set on any of the EC2 instances are compromised
Python
•
MIT License
•0•1•0•0•Updated Sep 29, 2018Sep 29, 2018
aws-cloudwatch_alarms_to_slack
Public
Sends Cloudwatch alarms to Slack
Python
•
MIT License
•1•0•0•0•Updated Sep 28, 2018Sep 28, 2018
aws-kinesis_demo_bruteforce_app
Public
Fake bruteforce attempts on demo APIs and its detection via Kinesis Analytics app
Python
•
MIT License
•0•0•0•0•Updated Sep 28, 2018Sep 28, 2018