OODA-driven SOC Strategy

Intrusion Discovery Cheat Sheet v2.0

A comprehensive guide for system administrators to detect and identify potential security threats on Windows 2000 systems.

Detecting the Elusive - Active Directory Threat Hunting

A comprehensive resource for threat hunting in Active Directory environments, covering tracking command-line/PowerShell activity, Kerberoasting detection, auditing attacker activity, and monitoring enterprise command-line activity.

Hardening OpenLDAP on Linux with AppArmor and systemd

A comprehensive guide to hardening OpenLDAP on Linux using AppArmor and systemd, providing a defense in depth approach to securing LDAP deployments.

BPF+: Exploiting Global Data-flow Optimization in a Generalized Packet Filter Architecture

BPF+ is a generalized packet filter framework that achieves both high-level expressiveness and good performance for network monitoring and intrusion detection applications.

Crowdroid: Behavior-Based Malware Detection System for Android

A behavior-based malware detection system for Android platforms that uses crowdsourcing to detect anomalies and malware in applications.

Nmap Cheat Sheet v1.0

A comprehensive reference guide to Nmap's scripting engine and its various options, scripts, and target specifications.

Intelligence-Driven Computer Network Defense Informed by Analysis of Adversary Campaigns and Intrusion Kill Chains

A new approach to computer network defense that leverages knowledge about advanced persistent threats, using a kill chain model to describe phases of intrusions and map adversary kill chain indicators to defender courses of action.

SMB Access from Linux Cheat Sheet

A comprehensive cheat sheet for accessing Windows systems from Linux hosts using smbclient and rpcclient tools, covering password management, user and group enumeration, and more.