malwarezoo

malwarezoo's Stars

• jbaggs/anomalous-dns

  A set of zeek scripts providing a module for tracking and correlating abnormal DNS behavior.

  Language:Zeek336

• corelight/top-dns

  Top DNS Measurement for Bro

  Language:Zeek118

• leebaird/discover

  Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.

  Language:Shell3.5k826

• microsoft/LightGBM

  A fast, distributed, high performance gradient boosting (GBT, GBDT, GBRT, GBM or MART) framework based on decision tree algorithms, used for ranking, classification and many other machine learning tasks.

  Language:C++16.8k3.8k

• devsecboy/DomainRecon

  Based on URL and Organization Name, collect the IP Ranges, subdomains using various tools like Amass, subfinder, etc.. And check for uphost and Run Masscan to grap CNAME entries, take the screenshot of all the found subdomains using WebScreeShot and more...

  Language:Python15431

• dsheng/dnsovertcp

  Transform the dns udp request to tcp request to the specify dns server, thus avoid dns poisoning or hijacking, this converter is also similar to the dns-proxy.

  Language:Python41

• djanatyn/dns_client

  c program to send dns requests

  Language:C8

• radman404/DNSSUB

  Exfiltrate files over dns requests using Python and/or Bash

  Language:Python465

• breenmachine/dnsftp

  Client/Server scripts to transfer files over DNS. Client scripts are small and only use native tools on the host OS.

  Language:Python20647

• jtripper/dns-tcp-socks-proxy

  Simple daemon to tunnel DNS requests over SOCKS

  Language:C27273

• Arno0x/DNSExfiltrator

  Data exfiltration over DNS request covert channel

  Language:JavaScript854182

• iagox86/dnscat2

  Language:PHP3.5k609

• lukebaggett/dnscat2-powershell

  A Powershell client for dnscat2, an encrypted DNS command and control tool.

  Language:PowerShell397122

• sin5678/dnsquery

  send dns query packet

  Language:C2523

• argp/iBoot64helper

  IDAPython loader to help with AArch64 iBoot, iBEC, and SecureROM reverse engineering

  Language:Python25951

• decoder-it/psgetsystem

  getsystem via parent process using ps1 & embeded c#

  Language:PowerShell38989

• spitfire55/MegaDev

  Bro IDS + ELK Stack to detect and block data exfiltration

  Language:Bro4717

• Marten4n6/EvilOSX

  An evil RAT (Remote Administration Tool) for macOS / OS X.

  Language:Python2.3k480

• sooshie/bro-scripts

  Various Bro scripts

  Language:Bro9629

• HarmJ0y/Malleable-C2-Profiles

  Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable C2 profiles that you may use.

  173

• capstone-engine/capstone

  Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), Alpha, BPF, Ethereum VM, HPPA, LoongArch, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, TriCore, Webassembly, XCore and X86.

  Language:C7.7k1.6k

• radareorg/radare2

  UNIX-like reverse engineering framework and command-line toolset

  Language:C20.9k3k

• Yara-Rules/rules

  Repository of yara rules

  Language:YARA4.2k1k

• rmusser01/Cheatsheets

  Penetration Testing/Security Cheatsheets

  19153

• decalage2/oletools

  oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.

  Language:Python3k567

• cldrn/macphish

  Office for Mac Macro Payload Generator

  Language:Python23449

• kai5263499/osx-security-awesome

  A collection of OSX and iOS security resources

  738114

• drduh/macOS-Security-and-Privacy-Guide

  Guide to securing and improving privacy on macOS

  21.4k1.5k

• r00t-3xp10it/trojanizer

  Trojanize your payload - WinRAR (SFX) automatization - under Linux distros

  Language:Shell28995

• rxwx/CVE-2018-0802

  PoC Exploit for CVE-2018-0802 (and optionally CVE-2017-11882)

  Language:Python271133