hidd3ncod3s's repositories
WindowsAPIhash
Windows API Hashes used in the malwares
DecryptEKbinary
Decrypt the initial dropper of various exploit kits
InstumentOffice
Set of windbg breakpoints and notes for instrumenting Microsoft Office VBA engine.
PhanthomJS
Use PhanthomJS to deobfuscate Javascripts
tcpreplay-windows
TCPReplay for Windows using Scapy
awesome-SOC-IR
Awesome Security Operation Center and Incident Response
dpdk-pcapreplay
Replay pcaps using DPDK stack
http2fileextractor
Extract files from HTTP2 (HTTP 2.0) pcaps
PackerAttacker
C++ application that uses memory and code hooks to detect packers
avmplus-diff
Diff needed to compile avmplus on windows using Visual Studio
awesome_kql
Microsoft Kusto Query Language
dumpoverlay
Dumps overlay part from the EXE file
helloworld-CoreCLR
HelloWorld using customized CoreCLR.dll (and mscorlib.dll)
iot-malware
Malware source code samples leaked online uploaded to GitHub for those who want to analyze the code
Malware-Analysis-Training
Retired beginner/intermediate malware analysis training materials from @pedramamini and @erocarrera.
sysdigfalcorules
sysdig Falco Rules
CobaltStrike
CobaltStrike's source code