bluzh

social-engineer-toolkit

The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.

fsociety

fsociety Hacking Tools Pack – A Penetration Testing Framework

my-arsenal-of-aws-security-tools

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

Mirai-Source-Code

Leaked Mirai Source Code for Research/IoC Development Purposes

al-khaser

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

ptf

The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.

awesome-yara

A curated list of awesome YARA rules, tools, and people.

miasm

Reverse engineering framework in Python

ivre

Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, ProjectDiscovery tools, etc.

ProcDump-for-Linux

A Linux version of the ProcDump Sysinternals tool

xray

XRay is a tool for recon, mapping and OSINT gathering from public networks.

iptables-essentials

Iptables Essentials: Common Firewall Rules and Commands.

kamerka

Build interactive map of cameras from Shodan

ThreatHunting

A Splunk app mapped to MITRE ATT&CK to guide your threat hunts

malware-samples

A collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net

iocextract

Defanged Indicator of Compromise (IOC) Extractor.

dfirtrack

DFIRTrack - The Incident Response Tracking Application

ct-exposer

An OSINT tool that discovers sub-domains by searching Certificate Transparency logs

FCL

FCL (Fileless Command Lines) - Known command lines of fileless malicious executions

DoHC2

DoHC2 allows the ExternalC2 library from Ryan Hanson (https://github.com/ryhanson/ExternalC2) to be leveraged for command and control (C2) via DNS over HTTPS (DoH).

windows-internals

My notes while studying Windows internals

yara-rules

A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.

Windows-Hunting

pafishmacro

Pafish Macro is a Macro enabled Office Document to detect malware analysis systems and sandboxes. It uses evasion & detection techniques implemented by malicious documents.

windows-exploitation

My notes while studying Windows exploitation

sandboxapi

Minimal, consistent Python API for building integrations with malware sandboxes.

scada-stuff

A collection of scripts & tools for reverse-engineering & hacking SCADA/ICS devices.

rtfraptor

Extract OLEv1 objects from RTF files by instrumenting Word

ct-log

A low-cost Certificate Transparency log for deployment in the cloud.

punnycode-detector

Browser plugin to detect punnycode