kernweak's repositories
Android_Security
This repository is a suplimentary material for Android Training's done by Anant Shrivastava
APT-Hunter
APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity
ByteDance-HIDS
ByteDance-HIDS is a Cloud-Native Host-Based Intrusion Detection solution project to provide next-generation Threat Detection and Behavior Audition with modern architecture.
dcc
DCC (Dex-to-C Compiler) is method-based aot compiler that can translate DEX code to C code.
ddisasm
A fast and accurate disassembler
delete-self-poc
A way to delete a locked, or current running executable, on disk.
Detect-It-Easy
Program for determining types of files for Windows, Linux and MacOS.
ezuri
A Simple Linux ELF Runtime Crypter
GDA-android-reversing-Tool
GDA is a new fast and powerful decompiler in C++(working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory extraction, data decryption, and encryption, etc.
GH-Injector-Library
A feature rich DLL injection library.
ghidra
Ghidra is a software reverse engineering (SRE) framework
GitDorker
A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
Glass
Glass是一款针对资产列表的快速指纹识别工具,通过调用Fofa Api快速查询资产信息并识别重点资产的指纹,也可针对IP/IP段或资产列表进行快速的指纹识别。
HookwormForAndroid
一个基于Magisk&Riru的Module,可以助你用超低成本开发各种Hook插件,无须Xposed
Hyper-V-scripts
Hyper-V scripts
kernweak.github.io
My blogs
LIEF
LIEF - Library to Instrument Executable Formats
MalwareTrainingSets
Free Malware Training Datasets for Machine Learning
mosint
An automated e-mail OSINT tool
PENTESTING-BIBLE
Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.
pexphide
PoC for hiding PE exportsPE导出表隐藏
Process-Dump
Windows tool for dumping malware PE files from memory back to disk for analysis.
psc
E2E encryption for multi-hop tty sessions or portshells + TCP/UDP port forward
qiling
Qiling Advanced Binary Emulation Framework
RadareEye
A tool made for specially scanning nearby devices[BLE, Bluetooth & Wifi] and execute our given command on our system when the target device comes in-between range.
sigma
Generic Signature Format for SIEM Systems
Static
Package analysis tool for mobile applications.
upx
UPX - the Ultimate Packer for eXecutables