user1342 / Monocle

Related projects: ⓘ

• quarkslab / pyrrha
  A tool for firmware cartography
  ☆135Updated 6 months ago
• struppigel / hedgehog-tools
  ☆103Updated last month
• advanced-threat-research / GhidraScripts
  Scripts to run within Ghidra, maintained by the Trellix ARC team
  ☆73Updated last month
• jstrosch / sclauncher
  A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …
  ☆121Updated 2 months ago
• Bw3ll / ROP_ROCKET
  ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Sysc…
  ☆106Updated 2 weeks ago
• 0x534a / dynmx
  Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
  ☆80Updated last year
• airbus-cert / minusone
  Powershell Linter
  ☆46Updated 2 months ago
• cxiao / rust-reversing-workshop-recon-2024
  ☆64Updated 2 months ago
• br0kej / bin2ml
  A command line tool for extracting machine learning ready data from software binaries powered by Radare2
  ☆51Updated last week
• ic3qu33n / OffensiveCon24-uefi-task-of-the-translator
  OffensiveCon 2024 Repo, contains PoCs and materials for talk "UEFI and the Task of the Translator"
  ☆43Updated 3 months ago
• mdowd79 / presentations
  ☆75Updated 3 months ago
• blasty / unwyze
  ☆122Updated 10 months ago
• hugsy / recon_2024_windbg_workshop
  ☆70Updated 2 months ago
• N0fix / rustbininfo
  Get information about stripped rust executables
  ☆18Updated 2 weeks ago
• g4l4drim / ChromeDump
  ☆55Updated last year
• airbus-cert / yara-ttd
  Use YARA rules on Time Travel Debugging traces
  ☆86Updated last year
• jsecurity101 / JonMon
  ☆154Updated last month
• nikhilh-20 / ELFEN
  ELFEN: Automated Linux Malware Analysis Sandbox
  ☆115Updated 2 months ago
• atredispartners / aidapal
  aiDAPal is an IDA Pro plugin that uses a locally running LLM that has been fine-tuned for Hex-Rays pseudocode to assist with code analysi…
  ☆140Updated last month
• ExaTrack / Kdrill
  Python tool to check rootkits in Windows kernel
  ☆164Updated last month
• JanielDary / ELFieScanner
  A C++ tool for process memory scanning & suspicious telemetry generation that attempts to detect a number of malicious techniques used by…
  ☆72Updated 4 months ago
• arcana-technologies / arcana.elfscan
  ELF binary forensics tool for APT, virus, backdoor and rootkit detection
  ☆42Updated 5 months ago
• FuzzySecurity / BHUSA-2023
  ☆102Updated 2 months ago
• VulnerabilityResearchCentre / patch-diffing-in-the-dark
  Leveraging patch diffing to discover new vulnerabilities
  ☆101Updated last year
• malpedia / malpedia-flossed
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆44Updated 6 months ago
• RussianPanda95 / Yara-Rules
  Repository of Yara Rules
  ☆83Updated last week
• nccgroup / cq
  ☆115Updated last year
• pan-unit42 / dotnetfile
  ☆97Updated 10 months ago
• YoavLevi / IAT-Tracer
  An automation plugin for Tiny-Tracer framework to trace and watch functions directly out of the executable's import table or trace logs (…
  ☆105Updated 2 months ago
• SafeBreach-Labs / DoubleDrive
  A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files
  ☆121Updated 3 months ago