smthdfirent's Stars
google/comprehensive-rust
This is the Rust course used by the Android team at Google. It provides you the material to quickly teach Rust.
frida/frida
Clone this repo to build Frida
pwndbg/pwndbg
Exploit Development and Reverse Engineering with GDB Made Easy
lief-project/LIEF
LIEF - Library to Instrument Executable Formats (C++, Python, Rust)
amlweems/xzbot
notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)
Neo23x0/signature-base
YARA signature and IOC database for my scanners and tools
YDHCUI/manjusaka
牛屎花 一款基于WEB界面的远程主机管理工具
mandiant/Ghidrathon
The FLARE team's open-source extension to add Python 3 scripting to Ghidra.
t4d/StalkPhish
StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.
drb-ra/C2IntelFeeds
Automatically created C2 Feeds
eversinc33/Banshee
Experimental Windows x64 Kernel Rootkit with anti-rootkit evasion features.
google/cloud-forensics-utils
Python library to carry out DFIR analysis on the Cloud
georgesotiriadis/Chimera
Automated DLL Sideloading Tool With EDR Evasion Capabilities
SpyGuard/SpyGuard
SpyGuard is a forked and enhanced version of TinyCheck. SpyGuard's main objective is to detect signs of compromise by monitoring network flows transmitted by a device.
nccgroup/Cartographer
Code Coverage Exploration Plugin for Ghidra
WithSecureLabs/lolcerts
A repository of code signing certificates known to have been leaked or stolen, then abused by threat actors
hyuunnn/Hyara
Yara rule making tool (IDA Pro & Binary Ninja & Cutter & Ghidra Plugin)
roadwy/DefenderYara
Extracted Yara rules from Windows Defender mpavbase and mpasbase
HackingLZ/ExtractedDefender
blacktop/docker-ghidra
Ghidra Client/Server Docker Image
zodiacon/rust-course
p0dalirius/pdbdownload
A Python script to download PDB files associated with a Portable Executable (PE)
kkent030315/Van1338
A journal for $6,000 Riot Vanguard bounty.
mibho/x64dbg-vmp-trace
unorthodox approach to analyze a trace, but this helped me get comfy with x64 instructions overall (excluding sse/avx/etc lol), cleared up A LOT of misconceptions I had regarding VMP, and helped me not be as spooked as before about trying to use complex libs
c2links/NoWhere2Hide
C2 Active Scanner
intel/unicorn-for-efi
Unicorn Engine port for UEFI firmware
GossiTheDog/Monitoring
OWNsecurity/GWForensic
DFIR project to collect and analyze events in Google Workspace
marcizhu/ChaCha20
🔐 RFC 7539-compliant implementation of the ChaCha20 stream cypher algorithm
rtlcopymemory/IOCTL-Explorer
Java && Ghidrathon script to automatically find all IOCTL codes and their corresponding Windows API calls