I’m the creator of rastrea2r, an open source project that I started back in 2015 and that was presented at the SANS Threat Hunting Summit in 2016, and at BlackHat Arsenal USA in 2016 and 2018. It’s currently under active development by Sudheendra Bhat, myself and the contributions of the DFIR community.
rastrea2r (pronounced “rastreador” – hunter- in Spanish) is a multi-platform open source tool that allows incident responders and SOC analysts to triage suspect systems and hunt for Indicators of Compromise (IOCs) across thousands of endpoints in minutes.
I’m also the co-Founder of TTP0, an Open SOC project that was born in 2018 with the mission to build and support a community of practitioners, consultants, and thought leadership that formally share and document information and lessons learned through direct experience building and running enterprise Cyber programs.
TTP0 was first presented at the SANS SOC Summit in 2018.
You can find other open source projects and tools in my GitHub repository.