Pinned Repositories
adversary_emulation_library
An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
AttacKG
Building a Knowledge Graph for cyber attack with information extracted from Cyber Threat Intelligence reports.
AttacKG-for-Chinese
A Chinese version of Knowledge-enhanced-Attack-Graph.
Effective-and-Light-Weight-Deobfuscation-and-Semantic-Aware-Attack-Detection-for-PowerShell-Scripts
EXTRACTOR
Knowledge-enhanced-Attack-Graph
AttacKG: Constructing Knowledge-enhanced Attack Graphs from Cyber Threat Intelligence Reports
Open_source_provenance_graph_repos
A collection of open-source provenance graph repos.
TTPDrill-0.5
TTPDrill focuses on developing automated and context-aware analytics of cyber threat intelligence to accurately learn attack patterns (TTPs) from commonly available CTI sources in order to timely implement cyber defense actions.
MARLIN
li-zhenyuan's Repositories
li-zhenyuan/Knowledge-enhanced-Attack-Graph
AttacKG: Constructing Knowledge-enhanced Attack Graphs from Cyber Threat Intelligence Reports
li-zhenyuan/Open_source_provenance_graph_repos
A collection of open-source provenance graph repos.
li-zhenyuan/AttacKG-for-Chinese
A Chinese version of Knowledge-enhanced-Attack-Graph.
li-zhenyuan/atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
li-zhenyuan/li-zhenyuan
Config files for my GitHub profile.
li-zhenyuan/adversary_emulation_library
An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.
li-zhenyuan/AttacKG
Building a Knowledge Graph for cyber attack with information extracted from Cyber Threat Intelligence reports.
li-zhenyuan/li-zhenyuan.github.io
AcadHomepage: A Modern and Responsive Academic Personal Homepage
li-zhenyuan/2022-HW-POC
2022 护网行动 POC 整理
li-zhenyuan/America-Against-America
《美国反对美国》是王沪宁先生在上世纪80年代末赴美观察写作的。我们知道在那个年代**对西方特别是美国的追捧有多高,所以突然看到一个学者在80年代就有如此清楚的认识,十分钦佩。由于网上只有效果很差的PDF扫描版,所以我想利用OCR技术和肉眼(人体OCR)来转成现代化的文本格式。目前已经全部完成。
li-zhenyuan/attack-flow
Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by developing a representation of attack flows, modeling attack flows for a small corpus of incidents, and creating visualization tools to display attack flows.
li-zhenyuan/Audit-log-analysis
Have fun with audit log analysis :)
li-zhenyuan/caldera
Automated Adversary Emulation Platform
li-zhenyuan/ChatGLM-6B
ChatGLM-6B:开源双语对话语言模型 | An Open Bilingual Dialogue Language Model
li-zhenyuan/Creds
Some usefull Scripts and Executables for Pentest & Forensics
li-zhenyuan/depcomm
li-zhenyuan/dronesploit
Drone pentesting framework console
li-zhenyuan/ebpf
ebpf-go is a pure-Go library to read, modify and load eBPF programs and attach them to various hooks in the Linux kernel.
li-zhenyuan/FlowCog
li-zhenyuan/Hitomi-Downloader
:cake: Desktop utility to download images/videos/music/text from various websites, and more.
li-zhenyuan/joern
Open-source code analysis platform for C/C++/Java/Binary/Javascript based on code property graphs
li-zhenyuan/kestrel-lang
Kestrel threat hunting language: building reusable, composable, and shareable huntflows across different data sources and threat intel.
li-zhenyuan/Krystal
li-zhenyuan/LOLBAS
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
li-zhenyuan/Mangle
Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs
li-zhenyuan/obsidian-releases
Community plugins list, theme list, and releases of Obsidian.
li-zhenyuan/Palantir
PalanTír: Optimizing Attack Provenance with Hardware-enhanced System Observability, CCS'22
li-zhenyuan/pinduoduo_backdoor
拼多多apk内嵌提权代码,及动态下发dex分析
li-zhenyuan/PublicArena
Public Arena dataset
li-zhenyuan/siddhi
Stream Processing and Complex Event Processing Engine