n8-410

n8-410's Stars

• miron0xff/vyatta-conf-parser

  Config parser for Vyatta/VyOS

  Language:Python2011

• MISP/MISP

  MISP (core software) - Open Source Threat Intelligence and Sharing Platform

  Language:PHP5.3k1.4k

• salesforce/ja3

  JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.

  Language:Python2.7k289

• aploium/shootback

  a reverse TCP tunnel let you access target behind NAT or firewall

  Language:Python957236

• samyk/pwnat

  The only tool/technique to punch holes through firewalls/NATs where multiple clients & server can be behind separate NATs without any 3rd party involvement. Pwnat is a newly developed technique, exploiting a property of NAT translation tables, with no 3rd party, port forwarding, DMZ, DNS, router admin requirements, STUN/TURN/UPnP/ICE, or spoofing.

  Language:C3.3k484

• rocknsm/rock-scripts

  Bro scripts for the ROCK platform. http://rocknsm.io

  Language:Zeek339

• mempodippy/vlany

  Linux LD_PRELOAD rootkit (x86 and x86_64 architectures)

  Language:C935194

• hashtagcyber/bropy

  Basic Anomaly IDS capabilities with Python and Bro

  Language:Python10515

• taviso/loadlibrary

  Porting Windows Dynamic Link Libraries to Linux

  Language:C4.3k375

• 1N3/Sn1per

  Attack Surface Management Platform

  Language:Shell7.9k1.8k

• colemination/PowerOutlook

  Sample code from Owning MS Outlook with Powershell

  Language:PowerShell5925

• wrbelfield/ws1001wxdata

  Get real-time weather data from Ambient WS-1001 weather station

  Language:Perl83

• hc0d3r/ldpreload-disable

  disable LD_PRELOAD on linux

  Language:Shell192

• shirkdog/hunter-nsm

  Simple install script for Snort/Bro IDS with JSON logging on FreeBSD

  Language:Shell184

• ForensicArtifacts/artifacts

  Digital Forensics artifact repository

  Language:Python1k208

• google/rekall

  Rekall Memory Forensic Framework

  Language:Python1.9k398

• 504ensicsLabs/LiME

  LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices, such as those powered by Android. The tool supports acquiring memory either to the file system of the device or over the network. LiME is unique in that it is the first tool that allows full memory captures from Android devices. It also minimizes its interaction between user and kernel space processes during acquisition, which allows it to produce memory captures that are more forensically sound than those of other tools designed for Linux memory acquisition.

  Language:C1.7k336

• USArmyResearchLab/Dshell

  Dshell is a network forensic analysis framework.

  Language:Python5.4k1.1k

• obscuresec/random

  Scripts that aren't PowerShell

  Language:Shell4825

• 304GEEK/Scrape-DNS

  Searches for interesting cached DNS entries.

  Language:Shell5512