Automation to assess the state of your M365 tenant against CISA's baselines

A DFIR tool written in Python.

Ostorlab KEV: One-command to detect most remotely known exploitable vulnerabilities. Sourced from CISA KEV, Google's Tsunami, Ostorlab's Asteroid and Bug Bounty programs.

A daily updated summary of the most frequent types of security advisories currently being reported from different sources.

SCuBA Secure Configuration Baselines and assessment tool for Google Workspace

Daily archiver & triage issue creator for new releases of CISA's Known Exploited Vulnerabilities list

Build a CVE library with aggregated CISA, EPSS and CVSS data

CISA Known Exploited Vulnerabilities Catalog Enrichment

KEV EPSS Data

Crosswalk Nessus findings with the CISA Known and Exploited Vulnerabilities (KEV) catalog.

Scraper for daily renewal of the Known Exploited Vulnerabilities Catalog by CISA

Tracking the Solarwinds Hack.

Quick summary of some of the things I like to code and contribute to in my free time as well as for my professional career.

Trusted Internet Connection 3.0 telemetry collection solutions for organizations hosting applications and services in Azure.

An Ansible role for installing and configuring the Nessus Agent for the CISA CDM environment.

CISA Study Material

A daily updated summary of the most frequent types of security incidents currently being reported from different sources.

An Ansible role for installing Tanium for the CISA CDM environment.

Terraform code to create a site-to-site VPN tunnel between the COOL and the CISA CDM (Continuous Diagnostics and Mitigation) environment, as well as some related resources to feed COOL logging data to CDM.

A simple Ruby library for fetching and parsing the CISA KEV catalog.