RyanNgCT's starred repositories
html5-qrcode
A cross platform HTML5 QR code reader. See end to end implementation at: https://scanapp.org
LiME
LiME (formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory from Linux and Linux-based devices, such as those powered by Android. The tool supports acquiring memory either to the file system of the device or over the network. LiME is unique in that it is the first tool that allows full memory captures from Android devices. It also minimizes its interaction between user and kernel space processes during acquisition, which allows it to produce memory captures that are more forensically sound than those of other tools designed for Linux memory acquisition.
Blue-Team-Notes
You didn't think I'd go and leave the blue team out, right?
filetype.py
Small, dependency-free, fast Python package to infer binary file types checking the magic numbers signature
StalkPhish
StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.
MasterParser
MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs
OTX-Python-SDK
The Python SDK for AlienVault OTX
FlightRadarAPI
:airplane: Unofficial SDK for FlightRadar24 for Python 3 and NodeJS
digital-forensics-lab
Digital forensics lab course, as offered in FAST NUCES Karachi during Spring 2023.
flask-rbac
Flask-RBAC
smtp-email-spoofer-py
Python 3.x based email spoofer
PowerDecode
PowerDecode is a PowerShell-based tool that allows to deobfuscate PowerShell scripts obfuscated across multiple layers. The tool performs code dynamic analysis, extracting malware hosting URLs and checking http response.It can also detect if the malware attempts to inject shellcode into memory.
linux-syscalls
🌐🐧 Browsable linux kernel syscall tables built with Systrack (https://github.com/mebeim/systrack)
Regshot-Advanced
This is a fork of Regshot (original found at https://sourceforge.net/projects/regshot/) with very enhanced functionality.
volatility-binaries
Contains compiled binaries of Volatility
SOCFortress-Threat-Intel
Integrate your Wazuh-Manager or Graylog with the SOCFortress Threat Intel Service
lnk_parser
lnk_parser is a full rust implementation to parse windows LNK files
Break-In-Analyzer
Break-In Analyzer - A script that analyze auth.log, secure, utmp/wtmp for possible SSH break-in attempts
odin-sdk-python
It provides a simple way to interact with the Odin API and access various services related to cybersecurity, certificates, and more
randomcodes
Dumping random code which might be useful for someone.