Hardware and Firmware Security Guidance

0 (0)

This repository offers guidance on mitigating side-channel attacks through firmware patches, software patches, configuration changes, and more. It also provides resources on publicized attacks like Spectre and Meltdown, as well as information on firmware and microcode vulnerabilities such as LoJax and Ryzenfall. Additionally, it includes recommendations for UEFI hardening and hardware upgrades.

Training and Resources

Free

ALTERNATIVES

Nessus Cheat Sheet

0 (0)

A comprehensive guide to Nessus, a vulnerability scanner, covering data directories, binary directories, logs directories, plugin directories, advanced settings, API, and good practices.

Training and Resources

Free

appsec scanner security-testing vulnerability-scanning plugin

The Cyberclopaedia

0 (0)

A comprehensive cybersecurity resource for learning and education

Training and Resources

Free

cybersecurity hacking learning education

FARA

0 (0)

FARA is a repository of purposefully erroneous Yara rules for training security analysts.

Training and Resources

Free

security-analysis binary-analysis yara training yara-rules

Active Directory Exploitation Cheat Sheet

0 (0)

Cheat sheet with common enumeration and attack methods for Windows Active Directory.

Training and Resources

Free

enumeration powershell windows lateral-movement

SIREN Setup Instructions

0 (0)

Instructions for setting up SIREN, including downloading Linux dependencies, cloning the repository, setting up virtual environment, installing pip requirements, running SIREN, setting up Snort on Pi, and MySQL setup.

Training and Resources

Free

linux python ubuntu mysql git snort pip iptables

CloudGoat

0 (0)

CloudGoat is a 'Vulnerable by Design' AWS deployment tool for honing cloud cybersecurity skills through 'capture-the-flag' style scenarios.

Training and Resources

Free

aws cloud-security security-training capture-the-flag