Ryuchen
Develop Cuckoo sandbox for three years and make it to be more comfortable for China users Current time focus on learning NLP && openKG
BytedanceBeijing
Ryuchen's Stars
projectdiscovery/nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
samratashok/nishang
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
WooooDyy/LLM-Agent-Paper-List
The paper list of the 86-page paper "The Rise and Potential of Large Language Model Based Agents: A Survey" by Zhiheng Xi et al.
hfiref0x/UACME
Defeating Windows User Account Control
fofapro/vulfocus
🚀Vulfocus 是一个漏洞集成平台,将漏洞环境 docker 镜像,放入即可使用,开箱即用。
ph4ntonn/Stowaway
👻Stowaway -- Multi-hop Proxy Tool for pentesters
gloxec/CrossC2
generate CobaltStrike's cross-platform payload
virtio-win/kvm-guest-drivers-windows
Windows paravirtualized drivers for QEMU\KVM
abatchy17/WindowsExploits
Windows exploits, mostly precompiled. Not being updated. Check https://github.com/SecWiki/windows-kernel-exploits instead.
jstrosch/malware-samples
Malware samples, analysis exercises and other interesting resources.
al0ne/suricata-rules
Suricata IDS rules 用来检测红队渗透/恶意行为等,支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等
blackarrowsec/redteam-research
Collection of PoC and offensive techniques used by the BlackArrow Red Team
elastic/protections-artifacts
Elastic Security detection content for Endpoint
RamadhanAmizudin/malware
Malware Samples. Uploaded to GitHub for those want to analyse the code. Code mostly from: http://www.malwaretech.com
bitsadmin/nopowershell
PowerShell rebuilt in C# for Red Teaming purposes
InQuest/malware-samples
A collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net
BeichenDream/BadPotato
Windows 权限提升 BadPotato
libguestfs/libguestfs
library and tools for accessing and modifying virtual machine disk images. PLEASE DO NOT USE GITHUB FOR ISSUES OR PULL REQUESTS. See the website for how to file a bug or contact us.
Bert-JanP/Open-Source-Threat-Intel-Feeds
This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.
RoomaSec/RmEye
戎码之眼是一个window上的基于att&ck模型的威胁监控工具.有效检测常见的未知威胁与已知威胁.防守方的利剑
Dec0ne/DllNotificationInjection
A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and remote processes.
qemus/qemu-docker
QEMU in a Docker container.
Admyral-Security/admyral
🤖 Admyral's Python SDK simplifies writing workflow automations for Security Engineers
p0w3rsh3ll/AutoRuns
🚀AutoRuns is a PowerShell module that will help do live incident response and enumerate autoruns artifacts that may be used by legitimate programs as well as malware to achieve persistence.
jmxtrans/jmxtrans-agent
Java Agent based JMX metrics exporter.
GengGode/GenshinImpact_TianLi
原神 · 天理,原神最好的外置终端
BurntSushi/rsc-regexp
Translations of a simple C program to Rust.
CYB3RMX/MalwareHashDB
Malware hashes for open source projects.
center-for-threat-informed-defense/sensor-mappings-to-attack
Sensor Mappings to ATT&CK is a collection of resources to assist cyber defenders with understanding which sensors and events can help detect real-world adversary behaviors in their environments.
crifan/cpu_emulator_unicorn
CPU模拟利器:Unicorn