dondemeier

dondemeier's Stars

• rizinorg/rz-ghidra

  Deep ghidra decompiler and sleigh disassembler integration for rizin

  Language:C++83089

• viper-framework/viper-docker

  2218

• blacktop/docker-cuckoo

  Cuckoo Sandbox Dockerfile

  Language:Shell32497

• viper-framework/viper

  Binary analysis and management framework

  Language:Python1.5k351

• mandiant/flare-vm

  A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

  Language:PowerShell6.7k928

• S2E/s2e

  S2E: A platform for multi-path program analysis with selective symbolic execution.

  Language:C++45389

• alphaSeclab/awesome-reverse-engineering

  Reverse Engineering Resources About All Platforms(Windows/Linux/macOS/Android/iOS/IoT) And Every Aspect! (More than 3500 open source tools and 2300 posts&videos)

  4.5k862

• rfarley3/CodeXt-ugly

  The good, the bad, and the ugly of CodeXt mid-dissertation writing. Just something to get the code online.

  Language:C++116

• PowerShellMafia/PowerSploit

  PowerSploit - A PowerShell Post-Exploitation Framework

  Language:PowerShell12k4.6k

• DarthTon/Blackbone

  Windows memory hacking library

  Language:C++4.9k1.3k

• johnjohnsp1/MimkatzCollider

  Mimikatz HashClash

  Language:PHP1223

• googleprojectzero/sandbox-attacksurface-analysis-tools

  Set of tools to analyze Windows sandboxes for exposed attack surface.

  Language:C#2.1k434

• tyranid/DotNetToJScript

  A tool to create a JScript file which loads a .NET v2 assembly from memory.

  Language:C#1.2k298

• johnjohnsp1/Shellcode-Via-HTA

  How To Execute Shellcode via HTA

  Language:JavaScript13689

• bitsadmin/wesng

  Windows Exploit Suggester - Next Generation

  Language:Python4.2k572

• mattifestation/PSReflect

  Easily define in-memory enums, structs, and Win32 functions in PowerShell

  Language:PowerShell21858

• teamdfir/sift-saltstack

  Salt States for Configuring the SIFT Workstation

  Language:SaltStack9733

• teamdfir/sift

  SIFT

  49465

• fancycode/MemoryModule

  Library to load a DLL from memory.

  Language:C2.9k762

• stephenfewer/ReflectiveDLLInjection

  Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.

  Language:C2.8k781

• RPISEC/MBE

  Course materials for Modern Binary Exploitation by RPISEC

  Language:C5.5k886

• hugsy/gef

  GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux

  Language:Python7.1k741

• pwndbg/pwndbg

  Exploit Development and Reverse Engineering with GDB Made Easy

  Language:Python7.8k899

• salesforce/hassh

  HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints can be easily stored, searched and shared in the form of a small MD5 fingerprint.

  Language:Python53374

• taviso/loadlibrary

  Porting Windows Dynamic Link Libraries to Linux

  Language:C4.3k379

• nccgroup/OneLogicalMyth_Shell

  A HTA shell to assist with breakout assessments.

  Language:HTML11217

• salesforce/ja3

  JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.

  Language:Python2.8k293

• mitre-attack/bzar

  A set of Zeek scripts to detect ATT&CK techniques.

  Language:Zeek57075

• PowerShell/PowerShell

  PowerShell for every system!

  Language:C#45.8k7.3k

• RsaCtfTool/RsaCtfTool

  RSA attack tool (mainly for ctf) - retrieve private key from weak public key and/or uncipher data

  Language:Python5.8k918