sydp's Stars
sickcodes/Docker-OSX
Run macOS VM in a Docker! Run near native OSX-KVM in Docker! X11 Forwarding! CI/CD for OS X Security Research! Docker mac Containers.
mthcht/ThreatHunting-Keywords
Awesome list of keywords and artifacts for Threat Hunting sessions
vonderchild/digital-forensics-lab
google/dfindexeddb
fraspass/ncbc
Nested Dirichlet models for unsupervised attack pattern detection in honeypot data
jivoi/awesome-ml-for-cybersecurity
:octocat: Machine Learning for Cyber Security
donnemartin/system-design-primer
Learn how to design large-scale systems. Prep for the system design interview. Includes Anki flashcards.
HavocFramework/Havoc
The Havoc Framework.
juliocesarfort/public-pentesting-reports
A list of public penetration test reports published by several consulting firms and academic security groups.
trailofbits/polyfile
A pure Python cleanroom implementation of libmagic, with instrumented parsing from Kaitai struct and an interactive hex viewer
loov/lensm
Go assembly and source viewer
GoogleCloudPlatform/security-analytics
Community Security Analytics provides a set of community-driven audit & threat queries for Google Cloud
mdecrevoisier/EVTX-to-MITRE-Attack
Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.
tclahr/uac
UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.
WithSecureLabs/LinuxCatScale
Incident Response collection and processing scripts with automated reporting scripts
AndrewRathbun/DFIRArtifactMuseum
The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifact validation processes as well as increase access to artifacts that may no longer be readily available anymore.
8051Enthusiast/biodiff
Hex diff viewer using alignment algorithms from biology
lwthiker/curl-impersonate
curl-impersonate: A special build of curl that can impersonate Chrome & Firefox
AndrewRathbun/DFIRMindMaps
A repository of DFIR-related Mind Maps geared towards the visual learners!
rung/threat-matrix-cicd
Threat matrix for CI/CD Pipeline
silverf0x/RpcView
RpcView is a free tool to explore and decompile Microsoft RPC interfaces
OTRF/ThreatHunter-Playbook
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
teoseller/osquery-attck
Mapping the MITRE ATT&CK Matrix with Osquery
levlesec/lockup
A proof-of-concept Android application to detect and defeat some of the Cellebrite UFED forensic toolkit extraction techniques.
unsw-cse-comp3900-9900-21T1/capstone-project-9900-f12a-rocket-maven
capstone-project-9900-f12a-rocket-maven created by GitHub Classroom
alexMyG/AndroPyTool
A framework for automated extraction of static and dynamic features from Android applications
a0rtega/pafish
Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do
LordNoteworthy/al-khaser
Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
guillaume-be/rust-bert
Rust native ready-to-use NLP pipelines and transformer-based models (BERT, DistilBERT, GPT2,...)
OWASP/igoat
OWASP iGoat - A Learning Tool for iOS App Pentesting and Security by Swaroop Yermalkar