compliances , security

Crowdstrike – Ghostpack Tool Sets

January 29, 2023

Useful forensic tool sets

Sample

SeatBelt recon script (compiled with the newly released GhostBuild) to see what that traffic fingerprint looks like and see if the output tells me anything interesting.

GhostPack · GitHub

https://github.com/CrowdStrike/CRT

Part 1: Threat hunting with BRO/Zeek and EQL | HoldMyBeer (holdmybeersecurity.com)