Various tools for the LogRhythm SIEM including custom MPE rules and Smart Reponse plug-ins.
Various tools for Carbon Black Defense
Home of The Poor Man’s Incident Response Toolkit (PMIRT).
I have moved my projects from Bitbucket to GitLab. At some point I’ll be removing my work from Bitbucket, so please update any bookmarks to reflect the change.