Cisco-Talos / useful-tools

Related projects: ⓘ

• mattifestation / MSFTTraceMessageFormat
  All TMF files that I extracted from Microsoft PDBs.
  ☆12Updated 5 years ago
• sourcefrenchy / cryptopayload
  module for certexfil
  ☆15Updated 2 years ago
• Cisco-Talos / pdata_check
  ☆15Updated this week
• psrok1 / emu-strings
  Emu-strings project - JScript/VBScript automated dropper analysis system
  ☆17Updated 3 years ago
• woanware / reg-entropy-scanner
  Scans through registry hives outputting entropy values for key/values, dumps binary contents to files...we are looking for those "fileles…
  ☆10Updated 5 years ago
• newlog / r2com
  radare2 script to help on COM objects reverse engineering
  ☆11Updated 7 years ago
• georgenicolaou / icarus
  The Exploitation Toolkit Icarus is a cross platform software exploitation library that assists in the development of proof of concept exp…
  ☆17Updated 11 years ago
• mandiant / win10_auto
  ☆23Updated 5 years ago
• Cisco-Talos / FIRST-server
  ☆32Updated 3 months ago
• mandiant / vivisect
  pure Python binary analysis framework
  ☆21Updated 5 years ago
• pentestit / recon-smtp
  smtp-user-enum.pl ported into a recon-ng module.
  ☆9Updated 10 years ago
• lightfaith / locasploit
  Local enumeration and exploitation framework.
  ☆18Updated 7 years ago
• malcomvetter / CertCheck
  Programmatically access a TLS certificate chain in C++ and C#
  ☆13Updated 5 years ago
• glinares / CSCGuard
  Protects and logs suspicious and malicious usage of .NET CSC.exe and Runtime C# Compilation
  ☆25Updated 6 years ago
• silascutler / DetuxNG
  The Multiplatform Linux Sandbox
  ☆15Updated 9 months ago
• optiv / netneedle
  Network based steganography based control channels and chat.
  ☆8Updated 8 years ago
• Arno0x / MultibyteEncodedShellcode
  An AV evasion technique using multibyte xor encoding of shellcode
  ☆8Updated 7 years ago
• jeperez / windows-operating-system-archaeology
  windows-operating-system-archaeology @Enigma0x3 @subTee
  ☆44Updated 7 years ago
• repnz / autoit-analysis
  AutoIt Analysis Library: Parser & Emulator For Malware Researchers
  ☆16Updated 5 years ago
• byt3bl33d3r / hookme
  Automatically exported from code.google.com/p/hookme
  ☆13Updated 8 years ago
• MAECProject / pefile-to-maec
  Generate MAEC XML from Ero Carrera's pefile output
  ☆15Updated 7 years ago
• BorjaMerino / reflectPatcher
  Python script to patch the reflective stub in a DLL
  ☆24Updated 7 years ago
• 649 / EquationDrug
  The ORIGINAL decrypted copies of the Shadow Broker's equation_drug release. Contains Equation group's espionage DLL implants library. Use…
  ☆18Updated 6 years ago
• hasherezade / 7ev3n_decoders
  Decoders for 7ev3n ransomware
  ☆14Updated 7 years ago
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆14Updated 4 years ago
• rwfpl / rewolf-pcausa-exploit
  PCAUSA Rawether for Windows Local Privilege Escalation
  ☆36Updated 7 years ago
• 0utrider / malrecon
  MalRecon - Basic Malware Reconnaissance and Analysis Tool
  ☆26Updated 7 years ago
• VirusTotal / protoc-gen-yara
  Automatic generator of YARA modules based in protocol buffers
  ☆14Updated last week
• ceramicskate0 / AddReferenceDotRedTeam
  A PoC to show how to add code to C# and dotNet and make it reusable for Red Team operations. Maybe one day it will be the largest collect…
  ☆17Updated 4 years ago
• Fmk0 / templates
  ☆36Updated 4 years ago