gregcopenhaver

adb

Adaptive Document Builder

awesome-go

A curated list of awesome Go frameworks, libraries and software

awesome-ida-x64-olly-plugin

A curated list of IDA x64DBG and OllyDBG plugins.

beats

:tropical_fish: Beats - Lightweight shippers for Elasticsearch & Logstash

binaryalert

BinaryAlert: Serverless, Real-time & Retroactive Malware Detection

content

This repository contains all Demisto content and from here we share content updates

cowrie

Cowrie SSH/Telnet Honeypot

Cuckoo-AWS

django-weed

Weed-FS integration into Django as a storage

flare-emu

flare-ida

IDA Pro utilities from FLARE team

gemini-python

A python client for the Gemini API and Websocket

ghidra

idenLib

idenLib - Library Function Identification

MalConfig

This is part of a module for the framework that i'm constantly developing. Currently only information of the C2 are disclosed here.

mkYARA

Generating YARA rules based on binary code

MSRC-Security-Research

Security Research from the Microsoft Security Response Center (MSRC)

PasteHunter

Scanning pastebin with yara rules

pe-afl

Shared

Shared Blogs and Notebooks

shodan-python

The official Python library for Shodan

signature-base

Signature base for my scanner tools

SymStore

The history of Windows Internals via symbols.

ThreatHunting

A Splunk app mapped to MITRE ATT&CK to guide your threat hunts

tpotce

T-Pot Universal Installer and ISO Creator

website-evidence-collector

The tool Website Evidence Collector (WEC) automates the website evidence collection of storage and transfer of personal data. https://edps.europa.eu/press-publications/edps-inspection-software_en

WinDbg-Samples

Sample extensions, scripts, and API uses for WinDbg.

yara

The pattern matching swiss knife

zeek

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

zip

Fork of Go's archive/zip to add reading/writing of password protected zip files.