Pinned Repositories
awesome-forensics
A curated list of awesome forensic analysis tools and resources
awesome-incident-response
A curated list of tools for incident response
Emperor
Emperor is a Bash script for Linux, designed to pull critical forensic artifacts from a target during IR, for direct analysis on a forensic workstation.
Ghidra-Scripts
Malware analysis scripts for Ghidra
gootloader
Collection of scripts used to deobfuscate GOOTLOADER malware samples.
Kestrel
Kestrel is a Powershell script designed to pull critical forensic artifacts from a target during IR, for direct analysis on a forensic workstation. It can be run via CrowdStrike RTR or manually via Powershell.
Malware-Development-Training
This repo contains my notes on malware development.
Malware-RE-Write-Ups
My personal collection of malware analysis write-ups.
Misc_Red_Team_Scripts
Miscellaneous hacking tools/scripts for red teaming.
Pointman
Advanced file identifier for Linux, written in Python. Inspired by TrID.
Analyzer1x7000's Repositories
Analyzer1x7000/Kestrel
Kestrel is a Powershell script designed to pull critical forensic artifacts from a target during IR, for direct analysis on a forensic workstation. It can be run via CrowdStrike RTR or manually via Powershell.
Analyzer1x7000/Malware-RE-Write-Ups
My personal collection of malware analysis write-ups.
Analyzer1x7000/Emperor
Emperor is a Bash script for Linux, designed to pull critical forensic artifacts from a target during IR, for direct analysis on a forensic workstation.
Analyzer1x7000/Misc_Red_Team_Scripts
Miscellaneous hacking tools/scripts for red teaming.
Analyzer1x7000/awesome-forensics
A curated list of awesome forensic analysis tools and resources
Analyzer1x7000/awesome-incident-response
A curated list of tools for incident response
Analyzer1x7000/Ghidra-Scripts
Malware analysis scripts for Ghidra
Analyzer1x7000/gootloader
Collection of scripts used to deobfuscate GOOTLOADER malware samples.
Analyzer1x7000/Malware-Development-Training
This repo contains my notes on malware development.
Analyzer1x7000/Pointman
Advanced file identifier for Linux, written in Python. Inspired by TrID.
Analyzer1x7000/malware-gems
Malware gems for aspiring malware analysts
Analyzer1x7000/pharos
Automated static analysis tools for binary programs
Analyzer1x7000/pics
File formats dissections and more...
Analyzer1x7000/skuld
Next-Gen Stealer written in Go. Stealing from Discord, Chromium-Based & Firefox-Based Browsers, Crypto Wallets and more, from every user on every disk. (PoC. For educational purposes only)
Analyzer1x7000/splunk-bots
This repository is dedicated to hosting personal comprehensive walkthrough solutions for Splunk's Boss of the SOC (BOTS) CTF-style labs. To be eventually updated with all BOTS events.
Analyzer1x7000/TotalRecall
This tool extracts and displays data from the Recall feature in Windows 11, providing an easy way to access information about your PC's activity snapshots.
Analyzer1x7000/uac
UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.
Analyzer1x7000/VelociraptorGPT
For incident responders, forensic analysts, and threat hunters - your personal Velociraptor assistant.
Analyzer1x7000/XOR-Brute
A basic Python script for brute forcing XOR-encrypted data. It automatically iterates through all possible keys and outputs a list of possible decryptions.