Stars
Leaked pentesting manuals given to Conti ransomware crooks
Tmux configuration, that supercharges your tmux to build cozy and cool terminal environment
A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk
Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com
blackbagtech / sleuthkit-APFS
Forked from sleuthkit/sleuthkitA fork of The Sleuthkit with Pooled Storage and APFS support. See https://www.youtube.com/watch?v=k1XPillJ7aw for more info and usage.
A series of tutorials about radare2 framework from https://www.megabeets.net
Xori is an automation-ready disassembly and static analysis library for PE32, 32+ and shellcode
A curated list of awesome malware analysis tools and resources
Web app that provides basic navigation and annotation of ATT&CK matrices
The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted drives and extracted artifacts from Windows, Linux, MacOS, and A…
xoreaxeaxeax / movfuscator
Forked from Battelle/movfuscatorThe single instruction C compiler
Scans for accessibility tools backdoors via RDP
Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]
Collecting & Hunting for IOCs with gusto and style
MantaRay Automated Computer Forensic Triage Tool
Wiki-like CTF write-ups repository, maintained by the community. 2014
IOC (Indicator of Compromise) Extractor: a program to help extract IOCs from text files.
MISP (core software) - Open Source Threat Intelligence and Sharing Platform