Pinned Repositories
dyrerouters
Open project to monitor abused routers that infect Dyre malware | https://unixfreaxjp.github.io/dyrerouters/
glibcver-endian-checker
GNU libc version & endianness checker https://unixfreaxjp.github.io/glibcver-endian-checker/
HostileBlocker
HostileBLocker 2.0.0.3 http://unixfreaxjp.github.io/HostileBlocker/
IoT_Malware_Abuse
IoT Intrusion Payload Infrastructure Abuse Report
Malware-Misc-RE
Miscellaneous Malware RE
malwaremustdie
repository of tools & resources of the MMD team
mandibule
linux elf injector for x86 x86_64 arm arm64
rootkit
Linux rootkit for Ubuntu 16.04 and 10.04 (Linux Kernels 4.4.0 and 2.6.32), both i386 and amd64
Strudels_Attack
IOC for "Strudel"IoT "SSH TCP Forward" attacks | https://unixfreaxjp.github.io/Strudels_Attack/
Yara_rules_forked
My fork of/from Repository of yara rules
unixfreaxjp's Repositories
unixfreaxjp/Malware-Misc-RE
Miscellaneous Malware RE
unixfreaxjp/awesome-threat-intelligence
A curated list of Awesome Threat Intelligence resources
unixfreaxjp/ioc-finder
Simple, effective, and modular package for parsing indicators of compromise from text. It uses grammars rather than regexes which makes it more readable, maintainable, and hackable. You can test this project out here: http://ioc-finder.hightower.space .
unixfreaxjp/python-exe-unpacker
A helper script for unpacking and decompiling EXEs compiled from python code.
unixfreaxjp/aktaion
Aktaion: Open Source ML tool and data samples for Exploit and Phishing Research
unixfreaxjp/al-khaser
Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.
unixfreaxjp/awesome-incident-response
A curated list of tools for incident response
unixfreaxjp/Blog
unixfreaxjp/EaST
Exploits and Security Tools Framework 2.0.1
unixfreaxjp/FileInsight-plugins
FileInsight-plugins: plugins for McAfee FileInsight hex editor useful for various kind of decoding tasks in malware analysis.
unixfreaxjp/fireELF
Fileless Linux Malware Framework
unixfreaxjp/ghidra_scripts
Scripts for the Ghidra software reverse engineering suite.
unixfreaxjp/IDAGolangHelper
Set of IDA Pro scripts for parsing GoLang types information stored in compiled binary
unixfreaxjp/IDASkins
Advanced skinning plugin for IDA Pro
unixfreaxjp/imaginaryC2
Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which captures HTTP requests towards selectively chosen domains/IPs. Additionally, the tool aims to make it easy to replay captured Command-and-Control responses/served payloads.
unixfreaxjp/Infosec_Reference
An Information Security Reference That Doesn't Suck
unixfreaxjp/libelfmaster_examples
Simple ELF tools written to demonstrate libelfmaster capabilities.
unixfreaxjp/LiteHTTP
LiteHTTP is an HTTP bot that is being programmed in C#, on the .NET 2.0 dependency.
unixfreaxjp/Loki
Loki - Simple IOC and Incident Response Scanner
unixfreaxjp/memrun
Small tool to run ELF binaries from memory with a given process name
unixfreaxjp/pasv-agrsv
Passive recon / OSINT automation script
unixfreaxjp/plyara
Parse YARA rules and operate over them more easily.
unixfreaxjp/PowerShell
PowerShell for every system!
unixfreaxjp/PyInstallerExtractor
Patched version of https://sourceforge.net/projects/pyinstallerextractor/
unixfreaxjp/r2_scripts
Radare2 scripts (r2pipe)
unixfreaxjp/r2con2018
unixfreaxjp/r2m2
radare2 + miasm2 = ♥
unixfreaxjp/RATDecoders
Python Decoders for Common Remote Access Trojans
unixfreaxjp/scripts-1
unixfreaxjp/tweets_analyzer
Tweets metadata scraper & activity analyzer