8000 WithSecure Labs · GitHub
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content
@WithSecureLabs

WithSecure Labs

Welcome to WithSecure Labs. Here we publish research, and share our tools with the security community.

Popular repositories Loading

  1. chainsaw chainsaw Public

    Rapidly Search and Hunt through Windows Forensic Artefacts

    Rust 3.1k 275

  2. doublepulsar-detection-script doublepulsar-detection-script Public

    A python2 script for sweeping a network to find windows systems compromised with the DOUBLEPULSAR implant.

    Python 1k 315

  3. python-exe-unpacker python-exe-unpacker Public

    A helper script for unpacking and decompiling EXEs compiled from python code.

    Python 943 337

  4. CallStackSpoofer CallStackSpoofer Public

    A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)

    C++ 488 66

  5. LinuxCatScale LinuxCatScale Public

    Incident Response collection and processing scripts with automated reporting scripts

    Shell 300 55

  6. doublepulsar-c2-traffic-decryptor doublepulsar-c2-traffic-decryptor Public

    A python2 script for processing a PCAP file to decrypt C2 traffic sent to DOUBLEPULSAR implant

    Python 224 81

Repositories

Showing 10 of 40 repositories
  • chainsaw Public

    Rapidly Search and Hunt through Windows Forensic Artefacts

    WithSecureLabs/chainsaw’s past year of commit activity
    Rust 3,148 GPL-3.0 275 12 (1 issue needs help) 2 Updated Apr 26, 2025
  • CallStackSpoofer Public

    A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)

    WithSecureLabs/CallStackSpoofer’s past year of commit activity
    C++ 488 Apache-2.0 66 1 0 Updated Apr 8, 2025
  • iocs Public
    WithSecureLabs/iocs’s past year of commit activity
    Python 15 BSD-2-Clause 4 0 0 Updated Apr 2, 2025
  • tau-engine Public

    A document tagging library

    WithSecureLabs/tau-engine’s past year of commit activity
    Rust 30 MIT 4 0 0 Updated Mar 27, 2025
  • deject Public

    Memory dump and Sample analysis tool

    WithSecureLabs/deject’s past year of commit activity
    Python 12 GPL-3.0 1 0 0 Updated Mar 17, 2025
  • mongo-rs Public

    A higher-level wrapper on top of the official bson & mongodb crates.

    WithSecureLabs/mongo-rs’s past year of commit activity
    Rust 16 MIT 5 5 0 Updated Dec 3, 2024
  • python-exe-unpacker Public

    A helper script for unpacking and decompiling EXEs compiled from python code.

    WithSecureLabs/python-exe-unpacker’s past year of commit activity
    Python 943 GPL-3.0 337 18 4 Updated Aug 15, 2024
  • LinuxCatScale Public

    Incident Response collection and processing scripts with automated reporting scripts

    WithSecureLabs/LinuxCatScale’s past year of commit activity
    Shell 300 GPL-3.0 55 0 0 Updated Jun 25, 2024
  • hl7magic Public

    A Burp extension to allow for easy modification of HL7 messages sent to and from medical devices.

    WithSecureLabs/hl7magic’s past year of commit activity
    Python 6 Apache-2.0 2 0 0 Updated Mar 25, 2024
  • opencti-attribution-tools Public
    WithSecureLabs/opencti-attribution-tools’s past year of commit activity
    Python 0 0 0 0 Updated Sep 11, 2023
View all repositories

People

This organization has no public members. You must be a member to see who’s a part of this organization.

Top languages

Loading…

Most used topics

Loading…
0