a-alecs's starred repositories
windows-api-function-cheatsheets
A reference of Windows API function calls, including functions for file operations, process management, memory management, thread management, dynamic-link library (DLL) management, synchronization, interprocess communication, Unicode string manipulation, error handling, Winsock networking operations, and registry operations.
Conferences
Conference presentation slides
defender-dump
Dump quarantined files from Windows Defender
allthingsida
Repository for the code snippets from the AllThingsIDA video channel
forensictools
Collection of forensic tools
learning-reverse-engineering
This repository contains sample programs written primarily in C and C++ for learning native code reverse engineering.
learning-malware-analysis
This repository contains sample programs that mimick behavior found in real-world malware. The goal is to provide source code that can be compiled and used for learning purposes, without having to worry about handling live malware.
static-binaries
Various *nix tools built as statically-linked binaries
FullBypass
A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell.
xcyclopedia
Encyclopedia for Executables
Nauz-File-Detector
Linker/Compiler/Tool detector for Windows, Linux and MacOS.
100daysofYARA2024
Rules shared by the community from 100 Days of YARA 2024
awesome-edr-bypass
Awesome EDR Bypass Resources For Ethical Hacking
windows-driver-docs
The official Windows Driver Kit documentation sources
yara-forge
Automated YARA Rule Standardization and Quality Assurance Tool
adversary_emulation_library
An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.
UnpacMe-IDA-Byte-Search
UnpacMe IDA Byte Search