ExpOrx's repositories
APT_Digital_Weapon
Indicators of compromise (IOCs) collected from public resources and categorized by Qi-AnXin.
AlphaGolang
IDApython Scripts for Analyzing Golang Binaries
IEEEEuroSP23
Looking Beyond IoCs: Automatically Extracting Attack Patterns from External CTI
APT_CyberCriminal_Campagin_Collections
APT & CyberCriminal Campaign Collection
APT_REPORT
Interesting apt report collection and some special ioc express
BlackLotus
BlackLotus UEFI Windows Bootkit
BlueTeamTools
蓝队分析研判工具箱,自带的反编译工具对红队也有帮助,有建议欢迎给我留言
book-content
Real Android malware apps discussed in the book
bootlicker
A generic UEFI bootkit used to achieve initial usermode execution. It works with modifications.
CTI-fundamentals
A collection of papers, blogs, and resources that make up the quintessential aspects of cyber threat intelligence
Dark-Web-Archives
Archives of the criminal side of the internet
deepdarkCTI
Collection of Cyber Threat Intelligence sources from the deep and dark web
Droidjack
Este troyano para Android es uno de los más completos. Con él vamos a poder tener acceso a remoto a todo el dispositivo infectado, desde la agenda, las llamadas y los SMS hasta el micrófono y las cámaras del smartphone. Todo.
EfiGuard
Disable PatchGuard and DSE at boot time
EvilEye
A BeaconEye implement in Golang. It is used to detect the cobaltstrike beacon from memory and extract some configuration.
fridroid-unpacker
Defeat Java packers via Frida instrumentation
InsightEngineering
Hardcore Debugging
IsraelPalestineConflict
List of groups that are carrying out cyber actions in the conflict between Israel and Palestine.
linux-malware
Tracking interesting Linux (and UNIX) malware. Send PRs
malware-indicators
Citizen Lab Malware Reports
prescup-challenges
President's Cup Cybersecurity Competition Challenges
Security-PPT
Security-related Slide Presentation & Security Research Report(大安全各领域各公司各会议分享的PPT以及各类安全研究报告)
SecurityResearcher-Note
Cover various security approaches to attack techniques and also provides new discoveries about security breaches.
tech-memo
技術系のメモ記載。
vArmor
vArmor is a cloud native container sandbox based on LSM. It includes multiple built-in protection rules that are ready to use out of the box.