Hilton's starred repositories
TinyCheck
TinyCheck allows you to easily capture network communications from a smartphone or any device which can be associated to a Wi-Fi access point in order to quickly analyze them. This can be used to check if any suspect or malicious communication is outgoing from a smartphone, by using heuristics or specific Indicators of Compromise (IoCs). In order to make it working, you need a computer with a Debian-like operating system and two Wi-Fi interfaces. The best choice is to use a Raspberry Pi (2+) a Wi-Fi dongle and a small touch screen. This tiny configuration (for less than $50) allows you to tap any Wi-Fi device, anywhere.
volatility3
Volatility 3.0 development
windows_hardening
HardeningKitty and Windows Hardening Settings
EVTX-ATTACK-SAMPLES
Windows Events Attack Samples
hollows_hunter
Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).
Security-Datasets
Re-play Security Events
EDR-Telemetry
This project aims to compare and evaluate the telemetry of various EDR products.
PowerShellArsenal
A PowerShell Module Dedicated to Reverse Engineering
Invoke-DOSfuscation
Cmd.exe Command Obfuscation Generator & Detection Test Harness
alerting-detection-strategy-framework
A framework for developing alerting and detection strategies for incident response.
issue-status
A flexible, modern and blazingly fast ☄️ status page
Phishpedia
Official Implementation of "Phishpedia: A Hybrid Deep Learning Based Approach to Visually Identify Phishing Webpages" USENIX'21
mikrotik_authentication
Proofs of concept which successfully authenticate with MikroTik Winbox and MAC Telnet servers running on RouterOS version 6.45.1+
sightingdb
SightingDB is a database for Sightings
SecuritySnacks
SecuritySnack data that doesn't fit into a single tweet.