Detection Engineering Tools
☆25Mar 13, 2026Updated last week
Alternatives and similar repositories for Detection_Engineering_Tools
Users that are interested in Detection_Engineering_Tools are comparing it to the libraries listed below
Sorting:
- Obfuscate payloads using IPv4, IPv6, MAC or UUID strings☆23Feb 17, 2024Updated 2 years ago
- A proof of concept AMSI & ETW bypass using trampolines for hooking and modifying execution flow☆18Jun 26, 2025Updated 8 months ago
- Are you able to use open source intelligence to solve this challenge?☆11Apr 14, 2019Updated 6 years ago
- Detect userland hooks placed by AV/EDR☆28Sep 4, 2023Updated 2 years ago
- ☆12Jul 15, 2022Updated 3 years ago
- ☆51Nov 26, 2025Updated 3 months ago
- Short Python script for parsing Defender VDM signature files.☆10Sep 22, 2024Updated last year
- SVCdec☆10Mar 3, 2013Updated 13 years ago
- ☆10Mar 3, 2024Updated 2 years ago
- PowerShell-based utility for mapping byte offsets to source code using hex and ASCII context for detection research and red team tooling.☆32Dec 31, 2025Updated 2 months ago
- ☆15Jan 16, 2018Updated 8 years ago
- Official QEMU mirror. Please see http://wiki.qemu.org/Contribute/SubmitAPatch for how to submit changes to QEMU. Pull Requests are ignore…☆13Jun 28, 2022Updated 3 years ago
- ☆23Nov 29, 2023Updated 2 years ago
- Free IP Geolocation API☆16Jun 8, 2025Updated 9 months ago
- Tools to talk to UDS ECUs via socketcan☆13Oct 27, 2016Updated 9 years ago
- Ghidra script to help reversers to retrieve AUTOSAR symbols☆14Jun 3, 2023Updated 2 years ago
- A demo of building an iOS app in Scala (via IKVM via MonoTouch)☆55Apr 30, 2013Updated 12 years ago
- Dump protected files (SAM,SYSTEM,SECURITY) by parsing the raw NTFS partition☆37Nov 11, 2025Updated 4 months ago
- Simple BDM Tool for R52/53 Chrono Pack cluster VIN & Mileage coding☆15Jun 24, 2022Updated 3 years ago
- GCC 9.4.0. Tricore / AURIX Prebuild Binaries for Windows 64bit☆14Jan 24, 2023Updated 3 years ago
- WIP TC1796 CAN bootloader based on Infineon application example AP32136☆12Jul 10, 2022Updated 3 years ago
- Aurix TriCore time tracing deamon for the DAP miniWiggler V3 based on mcdxdas.dll☆12Apr 14, 2015Updated 10 years ago
- Automatically identify and extract potential anti-debugging techniques used by malware.☆28Nov 20, 2024Updated last year
- TTPMapper is an AI-driven threat intelligence parser that converts unstructured reports whether from web URLs or PDF files into structure…☆51Jun 21, 2025Updated 9 months ago
- ☆18Feb 2, 2026Updated last month
- socat version 2☆10Aug 30, 2012Updated 13 years ago
- create docset for Dash (http://kapeli.com/dash) with splunk search language☆15Sep 26, 2017Updated 8 years ago
- SightingDB is a database for Sightings☆22Jun 21, 2023Updated 2 years ago
- A detailed list of potentially dangerous file extensions☆18Jun 18, 2025Updated 9 months ago
- Bypasses AMSI protection through remote memory patching and parsing technique.☆55May 12, 2025Updated 10 months ago
- A lightweight tool that injects a custom assembly proxy into a target process to silently bypass ETW scanning by redirecting ETW calls to…☆45Jun 1, 2025Updated 9 months ago
- AI-Powered, Local Pythonic Coding Agent 🐞💻☆25Mar 3, 2025Updated last year
- Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).☆57Oct 10, 2022Updated 3 years ago
- A PoC .NET-specific process injection tool☆58Mar 17, 2024Updated 2 years ago
- A basic exemple of the API-Hashing method used by Red Teamers but also by malwares developers in C++☆37Jan 10, 2024Updated 2 years ago
- Stealthy x64 thread manipulation library for calling functions inside target processes without creating remote threads or installing hook…☆59Oct 10, 2025Updated 5 months ago
- Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL☆23Aug 27, 2022Updated 3 years ago
- ECU checksum software☆17Nov 24, 2014Updated 11 years ago
- dumps contents of SGML Object File version 2 files .sgo files☆14Jun 19, 2024Updated last year