taogoldi

taogoldi's Stars

• PwCUK-CTO/TheSAS2021-Red-Kelpie

  Indicators of compromise, YARA rules, and Python scripts to supplement the TheSAS2021 talk "Learning to ChaCha with Red Kelpie"

  Language:YARA111

• boku7/Ninja_UUID_Runner

  Module Stomping, No New Thread, HellsGate syscaller, UUID Shellcode Runner for x64 Windows 10!

  Language:C43386

• BushidoUK/Exploring-APT-campaigns

  Further investigation in to APT campaigns disclosed by private security firms and security agencies

  8120

• telekom-security/malware_analysis

  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.

  Language:Python11016

• Cloud-Architekt/AzureAD-Attack-Defense

  This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.

  Language:PowerShell2.2k316

• Sentinel-One/CobaltStrikeParser

  Language:Python1k192

• nidhaloff/igel

  a delightful machine learning tool that allows you to train, test, and use models without writing code

  Language:Python3.1k172

• 1d8/Coqui

  Bare Bones Banking malware coded for research & educational purposes

  Language:C8716

• sslab-gatech/pwn2own2020

  Compromising the macOS Kernel through Safari by Chaining Six Vulnerabilities

  Language:C++40257

• StrangerealIntel/DailyIOC

  IOC from articles, tweets for archives

  Language:YARA31145

• malrev/ABD

  Course materials for Advanced Binary Deobfuscation by NTT Secure Platform Laboratories

  Language:Jupyter Notebook1.1k174

• advanced-threat-research/Yara-Rules

  Repository of YARA rules made by Trellix ATR Team

  Language:YARA57380

• k-vitali/Malware-Misc-RE

  Miscellaneous Malware RE

  Language:Jupyter Notebook19545

• JPCERTCC/MalConfScan

  Volatility plugin for extracts configuration data of known malware

  Language:Python48567

• gnebbia/pdlist

  A passive subdomain finder

  Language:Python32646

• mnemonic-no/grafeo

  Open platform for modelling, collection and exchange of knowledge

  Language:Java15736

• CIRCL/AIL-framework

  AIL framework - Analysis Information Leak framework. Project moved to https://github.com/ail-project

  Language:Python1.3k285

• InQuest/yara-rules

  A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.

  Language:Python36555

• avast/ioc

  Threat Intel IoCs + bits and pieces of dark matter

  Language:C38381

• albertzsigovits/malware-writeups

  Personal research and publication on malware families

  13724

• Rurik/Noriben

  Noriben - Portable, Simple, Malware Analysis Sandbox

  Language:Python1.1k220

• mzfr/gtfo

  Search gtfobins and lolbas files from your terminal

  Language:Python45581

• SafeBreach-Labs/pinjectra

  Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)

  Language:C++792157

• Kevin-Robertson/Invoke-TheHash

  PowerShell Pass The Hash Utils

  Language:PowerShell1.5k301

• blackorbird/APT_REPORT

  Interesting APT Report Collection And Some Special IOC

  Language:Python2.5k516

• Yelp/elastalert

  Easy & Flexible Alerting With ElasticSearch

  Language:Python8k1.7k

• Yelp/amira

  AMIRA: Automated Malware Incident Response & Analysis

  Language:Python15147