Crowdroid: Behavior-Based Malware Detection System for Android

SMB Access from Linux Cheat Sheet

A comprehensive cheat sheet for accessing Windows systems from Linux hosts using smbclient and rpcclient tools, covering password management, user and group enumeration, and more.

SSH Tunnelling to Punch Through Corporate Firewalls – Updated take on one of the oldest LOLBINs

A comprehensive guide on utilizing advanced SSH tunneling techniques for network penetration testing and red team engagements, with a focus on Windows environments and firewall bypass methods.

Detecting the Elusive - Active Directory Threat Hunting

A comprehensive resource for threat hunting in Active Directory environments, covering tracking command-line/PowerShell activity, Kerberoasting detection, auditing attacker activity, and monitoring enterprise command-line activity.

Paving The Way to DA - Complete Post (Pt 1,2 & 3)

A three-part educational series documenting techniques for achieving domain administrator privileges in Windows environments, covering attack methods, defenses, and remediation strategies.

SecTemplates

SecTemplates offers free, comprehensive security program templates and resources for infosec professionals and startups lacking dedicated security teams.

Linux Detection Engineering - A primer on persistence mechanisms

A comprehensive guide on Linux persistence mechanisms, focusing on scheduled tasks and jobs, their implementation, detection, and hunting strategies.

vi Editor Cheat Sheet

A quick reference guide for the VI editor, covering commands and modes.

Framework for Cybersecurity Info Sharing

A Microsoft framework for secure and efficient sharing of cybersecurity information between trusted parties to reduce cybersecurity risks.

BPF+: Exploiting Global Data-flow Optimization in a Generalized Packet Filter Architecture

BPF+ is a generalized packet filter framework that achieves both high-level expressiveness and good performance for network monitoring and intrusion detection applications.