Skip to content

Instantly share code, notes, and snippets.

View ZacharyJSmit's full-sized avatar

Zac ZacharyJSmit

8 followers · 11 following
View GitHub Profile
@dnburgess
dnburgess / gist:9b95c72292ec8b2badb92a667702c70f
Last active January 30, 2024 01:00
DB Tech / WaitWhat Seedbox Stack
---
version: '2.4'
services:
gluetun:
image: qmcgaw/gluetun
container_name: gluetun
environment:
- PUID=998
- PGID=100
- VPNSP=private internet access
@ag-michael
ag-michael / FalconHuntqueries.md
Last active November 23, 2023 12:02
Falcon hunt queries

timestamp convert:


 convert ctime(timestamp/1000)

.top,.club,.xyz,.ru domain lookups where the amount of lookup for the domain is more than 1 and less than 4 per computer


aid=* event_simpleName=DnsRequest | regex DomainName=".*\.top$|.*\.club$|.*\.xyz$|.*\.ru$|[0-9]+.*\.\w$" | stats values(ComputerName) count by DomainName| where count <4 | sort – count