Marius Genheimer's starred repositories
ntlm_theft
A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)
sharem
SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also contains its own custom disassembler, with many innovative features, such as being able to show the deobfuscated disassembly of an encoded shellcode, or integrating emulation data to enhance the disassembly.
evil-mhyprot-cli
A PoC for Mhyprot2.sys vulnerable driver that allowing read/write memory in kernel/user via unprivileged user process.
VISION-ProcMon
A ProcessMonitor visualization application written in rust.
HiveV5_keystream_decryptor
bad stuffs by bad guys
TimeDateStamp
Discover TimeDateStamps In PE File
100daysOfYaraForOT
Operational Technology related Yara rules for the 2024 #100daysofYARA challenge. #OT #ICS #SCADA
zeek-exfil-detect
This Zeek package provides the possibility to detect exfiltration through statistical analysis methods.