airbus-cert / minusoneView external linksLinks
Powershell Linter
☆87Feb 6, 2026Updated last week
Alternatives and similar repositories for minusone
Users that are interested in minusone are comparing it to the libraries listed below
Sorting:
- YARA detection rule for CVE-2024-4367 arbitrary javascript execution in PDF.js☆11May 27, 2024Updated last year
- Linux BPF plugins for Volatility3☆23Jan 19, 2024Updated 2 years ago
- Native Rust bindings for @horsicq's Detect-It-Easy☆19Nov 11, 2025Updated 3 months ago
- USN Journal full path builder☆65Sep 16, 2024Updated last year
- Parser for Sdba memory pool tags☆21Jul 16, 2021Updated 4 years ago
- GoResolver is a Go analysis tool using both Go symbol extraction and Control Flow Graph (CFG) similarity to identify and resolve the func…☆81Jan 26, 2026Updated 2 weeks ago
- Repo that hold write-ups of various research projects I did and/or overall InfoSec things I investigated/researched.☆21Jan 5, 2025Updated last year
- ☆20Jan 10, 2025Updated last year
- VBScript & VBA source-to-source deobfuscator with partial-evaluation☆80Aug 7, 2024Updated last year
- A collection of modules and scripts to help with analyzing Nim binaries☆83Oct 7, 2024Updated last year
- A KISS Rust crate to parse Windows kernel crash-dumps created by Windows & its debugger.☆42Jan 2, 2026Updated last month
- A UEFI Application that hooks SetVariable to allow a user-space program to access kernel memory.☆20Jun 15, 2020Updated 5 years ago
- JPCERT/CC public YARA rules repository☆110Nov 14, 2025Updated 3 months ago
- FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (ext4, XFS) journals (not systemd-journald logs), gene…☆103Jan 13, 2026Updated last month
- The first open source runtime windows batch and command line deobfuscator☆42Aug 20, 2025Updated 5 months ago
- Forensic Scanner☆41Nov 29, 2012Updated 13 years ago
- Trace ScriptBlock execution for powershell v2☆40Jan 14, 2020Updated 6 years ago
- GPO Bypass is a tool / proof-of-concept that highlights how one can bypass Group Policy enforced policies. It uses Firefox as an example.☆14Jan 28, 2023Updated 3 years ago
- ShellSweeping the evil.☆181Nov 25, 2024Updated last year
- Generate Volatility3 profiles from BTF.☆31Dec 21, 2024Updated last year
- TIM is a Kusto investigation platform that enables a user to quickly pivot between data sources; annotate their findings; and promotes co…☆23Aug 7, 2024Updated last year
- Standalone Metasploit-like XOR encoder for shellcode☆50May 12, 2024Updated last year
- An eBPF detection program for CVE-2022-0847☆29Jul 5, 2022Updated 3 years ago
- Extract data of TTD trace file to a minidump☆31Jul 31, 2023Updated 2 years ago
- Here are some tools I developed to help analyze malware☆12Nov 8, 2023Updated 2 years ago
- This repository provide a json file for all Windows security Event IDs with lot of useful informations (Categories, GPO, Volume, Recomman…☆11Mar 2, 2023Updated 2 years ago
- RegRipper4.0☆81Dec 10, 2025Updated 2 months ago
- Custom nuclei templates for bug hunting.....☆27May 30, 2024Updated last year
- ☆24Oct 30, 2024Updated last year
- ☆113Sep 10, 2025Updated 5 months ago
- Configuration Extractors for Malware☆123Apr 23, 2025Updated 9 months ago
- ☆13Dec 24, 2023Updated 2 years ago
- ☆15May 3, 2024Updated last year
- The Frida-Jit-unPacker aims at helping researchers and analysts understand the behavior of packed malicious .NET samples.☆66Apr 15, 2024Updated last year
- Sample Rust Hooking Engine☆36Apr 5, 2024Updated last year
- Installing wazuh SIEM Unified XDR and SIEM protection☆31Jun 3, 2025Updated 8 months ago
- Publicly shareable windows event log message data☆28Nov 29, 2019Updated 6 years ago
- http://moaistory.blogspot.com/2018/10/winsearchdbanalyzer.html☆127Jul 20, 2024Updated last year
- ☆11Apr 7, 2022Updated 3 years ago