TallJohnBrown

TallJohnBrown's Stars

• NationalSecurityAgency/ghidra

  Ghidra is a software reverse engineering (SRE) framework

  Language:Java53.1k1k5.1k6k

• qilingframework/qiling

  A True Instrumentable Binary Emulation Framework

  Language:Python5.2k125545750

• Ne0nd0g/merlin

  Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

  Language:Go5.1k137106807

• BC-SECURITY/Empire

  Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.

  Language:PowerShell4.3k103407585

• I-S00N/I-S00N

  3.9k53721.9k

• HyperDbg/HyperDbg

  State-of-the-art native debugging tools

  Language:C3k90159385

• bootleg/ret-sync

  ret-sync is a set of plugins that helps to synchronize a debugging session (WinDbg/GDB/LLDB/OllyDbg2/x64dbg) with IDA/Ghidra/Binary Ninja disassemblers.

  Language:C2.1k5393263

• Neo23x0/yarGen

  yarGen is a generator for YARA rules

  Language:Python1.6k9134283

• blackberry/pe_tree

  Python module for viewing Portable Executable (PE) files in a tree-view using pefile and PyQt5. Can also be used with IDA Pro and Rekall to dump in-memory PE files and reconstruct imports.

  Language:Python1.3k5213171

• SafeBreach-Labs/PoolParty

  A set of fully-undetectable process injection techniques abusing Windows Thread Pools

  Language:C++991163138

• naksyn/Pyramid

  a tool to help operate in EDRs' blind spots

  Language:Python676121076

• FuzzySecurity/Fermion

  Fermion, an electron wrapper for Frida & Monaco.

  Language:CSS664231482

• BloodHoundAD/SharpHound3

  C# Data Collector for the BloodHound Project, Version 3

  Language:C#5222525156

• c3rb3ru5d3d53c/binlex

  A Binary Genetic Traits Lexer Framework

  Language:Rust463166550

• whickey-r7/grab_beacon_config

  Language:Lua447174103

• k1nd0ne/VolWeb

  A centralized and enhanced memory analysis platform

  Language:TypeScript39972045

• justfoxing/ghidra_bridge

  Python 3 bridge to Ghidra's Python scripting

  Language:Python344104724

• Densaugeo/uploadserver

  Python's http.server extended to include a file upload page

  Language:Python25232947

• 0xf005ba11/vmplex-ws

  A tabbed UI for Microsoft's Hyper-V

  Language:C#210111316

• kacos2000/WindowsTimeline

  Windows 10 (v1803+) ActivitiesCache.db parsers (SQLite, PowerShell, .EXE)

  Language:PowerShell18113222

• Cyb3r-Monk/ACCD

  Active C&C Detector

  Language:Jupyter Notebook1524013

• ojg/thatmicpre

  Microphone Pre-amplifier

  Language:HTML143729

• struppigel/hedgehog-tools

  Language:Python1114011

• sumeshi/evtx2es

  A library for fast parse & import of Windows Eventlogs into Elasticsearch.

  Language:Python837216

• mstratman/fv1-pedal-platform

  Schematics, code, and pcb layouts for an FV-1 guitar effects pedal

  Language:C79907

• ar0dd/CVE-2020-5902

  POC code for checking for this vulnerability. Since the code has been released, I decided to release this one as well. Patch Immediately!

  Language:Python12102

• richhorace/elastic-stack-browser-history

  Import your browser history into Elastic Stack

  Language:Python12204

• snus-b/Metasploit_Function_Hashes

  Language:Python5100

• sbousseaden/evtx2es

  Import Windows Eventlogs(.evtx) to ElasticSearch.

  Language:Python4100

• emf/ViperMonkey

  A VBA parser and emulation engine to analyze malicious macros.

  Language:Python2340