Nacho's repositories
RATDecoders
Python Decoders for Common Remote Access Trojans
TangledWinExec
C# PoCs for investigation of Windows process execution techniques
WMIParserStr
WMI OBJECTS.DATA parser
APT_CyberCriminal_Campagin_Collections
APT & CyberCriminal Campaign Collection
DLLHiding
Hiding x32/x64 Modules/DLLs using PEB
EvasiveProcessHollowing
Evasive Process Hollowing Techniques
RC4_Encrypt-Decrypt
RC4 encryption and decryption tool (c#)
Registry_Service_triggers
Extract service triggers from SYSTEM registry.
RegRipper2.8
RegRipper version 2.8
systeminformer
A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals.com
TamperETW
PoC to demonstrate how CLR ETW events can be tampered.
TekDefense-Automater
Automater - IP URL and MD5 OSINT Analysis
wmi-parser
Parses the WMI object database....looking for persistence