dfirence's starred repositories
TangledWinExec
PoCs and tools for investigation of Windows process execution techniques
ma-insights-xe
User Feedback Space of #MitreAssistant
static-analysis
⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.
system-design-101
Explain complex systems using visuals and simple terms. Help you prepare for system design interviews.
rust-minidump
Type definitions, parsing, and analysis for the minidump file format.
detection-and-response-pipeline
✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The purpose is to create a reference hub for designing effective threat detection and response pipelines. 👷 🏗
SysmonCommunityGuide
TrustedSec Sysinternals Sysmon Community Guide
diagram-maker
A library to display an interactive editor for any graph-like data.
drawthe.net
drawthe.net draws network diagrams dynamically from a text file describing the placement, layout and icons. Given a yaml file describing the hierarchy of the network and it's connections, a resulting diagram will be created.
sandbox-attacksurface-analysis-tools
Set of tools to analyze Windows sandboxes for exposed attack surface.
Hypervisor-101-in-Rust
The materials of "Hypervisor 101 in Rust", a one-day long course, to quickly learn hardware-assisted virtualization technology and its application for high-performance fuzzing on Intel/AMD processors.
RedTeaming-Tactics-and-Techniques
Red Teaming Tactics and Techniques
FlavorTown
Various ways to execute shellcode
ntdlll-unhooking-collection
different ntdll unhooking techniques : unhooking ntdll from disk, from KnownDlls, from suspended process, from remote server (fileless)
Shellcode-Hide
This repo contains : simple shellcode Loader , Encoders (base64 - custom - UUID - IPv4 - MAC), Encryptors (AES), Fileless Loader (Winhttp, socket)
prql-query
Query and transform data with PRQL