5hidobu's repositories
5hidobu.github.io
✨ Build a beautiful and simple website in literally minutes. Demo at https://beautifuljekyll.com
AMSI_bypuss_0x1
AMSI stands for "Antimalware Scan Interface." This script essentially breaks the AMSI protection by breaking one of the components in the AMSI chain. How detect this technique? keep reading.
dfirtrack
DFIRTrack - The Incident Response Tracking Application
hayabusa
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
Live-Forensicator
Powershell Script to aid Incidence Response and Live Forensics
malwoverview
Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT.
oletools
oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.
pe2pic
Small visualizator for PE files
PersistenceSniper
Powershell script that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines.
retoolkit
Reverse Engineer's Toolkit
usbrubberducky-payloads
The Official USB Rubber Ducky Payload Repository