githublihaha

githublihaha's Stars

• Just-Hack-For-Fun/Windows-INCIDENT-RESPONSE-COOKBOOK

  Windows 应急响应手册

  44534

• liamg/dismember

  :knife: Scan memory for secrets and more. Maybe eventually a full /proc toolkit.

  Language:Go63354

• mozillazg/ptcpdump

  Process-aware, eBPF-based tcpdump

  Language:C71747

• Just-Hack-For-Fun/Linux-INCIDENT-RESPONSE-COOKBOOK

  Linux 应急响应手册

  34127

• BlackINT3/OpenArk

  The Next Generation of Anti-Rookit(ARK) tool for Windows.

  Language:C++9.7k927

• Neo23x0/Loki

  Loki - Simple IOC and YARA Scanner

  Language:Python3.4k585

• horsicq/Detect-It-Easy

  Program for determining types of files for Windows, Linux and MacOS.

  Language:JavaScript7.8k738

• mandiant/capa

  The FLARE team's open-source tool to identify capabilities in executable files.

  Language:Python5k567

• selinuxG/Golin

  弱口令检测、 漏洞扫描、端口扫描（协议识别，组件识别）、web目录扫描、等保模拟定级、自动化运维、等保工具（网络安全等级保护现场测评工具）内置3级等保核查命令、基线核查工具、键盘记录器

  Language:Go1.3k207

• whwlsfb/JDumpSpider

  HeapDump敏感信息提取工具

  Language:Java1.4k133

• qi4L/qscan

  轻量化全方位扫描器

  Language:Go54645

• mifine666/miscan

  一款简单好用的漏洞管理工具，支持本地和协作两种模式。

  1519

• honmashironeko/ProxyCat

  一款部署于云端或本地的代理池中间件，可将静态代理IP灵活运用成隧道IP，提供固定请求地址，一次部署终身使用

  Language:Python1.2k117

• mozillazg/cloud-native-security-with-ebpf

  《eBPF 云原生安全：原理与实践》书中示例程序的完整源代码

  Language:C808

• stamparm/maltrail

  Malicious traffic detection system

  Language:Python6.7k1.1k

• slimtoolkit/slim

  Slim(toolkit): Don't change anything in your container image and minify it by up to 30x (and for compiled languages even more) making it secure too! (free and open source)

  Language:Go20.5k748

• mandiant/flare-floss

  FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.

  Language:Python3.4k456

• splunk/botsv3

  Splunk Boss of the SOC version 3 dataset.

  29747

• dnSpy/dnSpy

  .NET debugger and assembly editor

  Language:C#26.9k5.2k

• wanghongenpin/proxypin

  Open source free capture HTTP(S) traffic software ProxyPin, supporting full platform systems

  Language:Dart7.5k651

• wafinfo/DecryptTools

  DecryptTools-综合解密

  1.1k113

• krisnova/boopkit

  Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.

  Language:C1.6k174

• kaliworld/yaraplus

  修改自官方yara工具

  Language:YARA142

• AlessandroZ/LaZagne

  Credentials recovery project

  Language:Python9.7k2k

• m-sec-org/d-eyes

  D-Eyes为M-SEC社区一款检测与响应工具

  Language:YARA53570

• skyw4tch3r/RootKits-List-Download

  This is the list of all rootkits found so far on github and other sites.

  1.3k385

• Yara-Rules/rules

  Repository of yara rules

  Language:YARA4.2k1k

• rshipp/awesome-malware-analysis

  Defund the Police.

  12.1k2.6k

• cugu/awesome-forensics

  ⭐️ A curated list of awesome forensic analysis tools and resources

  4k632

• RoomaSec/RmTools

  蓝队应急工具

  Language:YARA45950