legit4n6's repositories
angelsix.github.io
Markdown Blog for AngelSix
ArtifactExtractor
Extract common Windows artifacts from source images and VSCs
artifacts
Digital Forensics Artifact Repository
awesome-forensics
A curated list of awesome forensic analysis tools and resources
dfirtriage
Digital forensic acquisition tool for Windows based incident response.
grr
GRR Rapid Response: remote live forensics for incident response
Invoke-ATTACKAPI
A PowerShell script to interact with the MITRE ATT&CK Framework via its own API
mac4n6
Collection of forensics artifacs location for Mac OS X and iOS
Malware
Course materials for Malware Analysis by RPISEC
Malware-Analysis
List of awesome malware analysis tools and resources
malwarecookbook
Malware Analyst's Cookbook stuffs
malwoverview
Malwoverview.py is a first response tool to perform an initial and quick triage on either a directory containing malware samples or a specific malware sample.
OverTheWire-website
OverTheWire website
p0wnedShell
PowerShell Runspace Post Exploitation Toolkit
pe-sieve
Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
rules
Repository of yara rules
shellnoob
A shellcode writing toolkit
sigma
Generic Signature Format for SIEM Systems
theZoo
A repository of LIVE malwares for your own joy and pleasure
ThreatHunter-Playbook
A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
xori
Xori is an automation-ready disassembly and static analysis library for PE32, 32+ and shellcode