liuchuang

capstone

Capstone disassembly/disassembler framework: Core (Arm, Arm64, M68K, Mips, PPC, Sparc, SystemZ, X86, X86_64, XCore) + bindings (Python, Java, Ocaml)

test

t

awesome-malware-analysis

A curated list of awesome malware analysis tools and resources

bro

Bro is a powerful network analysis framework that is much different from the typical IDS you may know. Official mirror of git.bro.org/bro.git .

community

Repository of modules and signatures contributed by the community

cuckoo

Cuckoo Sandbox is an automated dynamic malware analysis system

cuckooml

CuckooML: Machine Learning for Cuckoo Sandbox

DockerTarBuilder

它是一个工作流。可快速构建指定架构/平台的docker镜像

dpdk_engineer_manual

【冲破内核瓶颈，让I/O性能飙升】DPDK工程师手册，官方文档，最新视频，开源项目，实战案例，论文，大厂内部ppt，知名工程师一览表

fastnetmon

FastNetMon community - very fast DDoS analyzer with sflow/netflow/mirror support

ipfixcol

IPFIXcol is an implementation of an IPFIX (RFC 7011) collector

ICE_TEA_BIOS

The BIOS Code from project C970

libhtp

LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces.

linux_kernel_wiki

linux内核学习资料：200+经典内核文章，100+内核论文，50+内核项目，500+内核面试题，80+内核视频

moloch

Moloch is an open source, large scale, full packet capturing, indexing, and database system.

nprobe

A mirror of the paywall'd nprobe

PcapPlusPlus

PcapPlusPlus is a multiplatform C++ library for capturing, parsing and crafting of network packets. It is designed to be efficient, powerful and easy to use. It provides C++ wrappers for the most popular packet processing engines such as libpcap, WinPcap, DPDK and PF_RING.

rough

share_ppt

🚗 我个人曾经做过的技术分享...

snort

snort-2.9.6.2

snort3

Snort++

suricata

Suricata git repository maintained by the OISF

tifa-flow

tifa-flow

vmxnet3Hunter

Use this tool to prioritize cluster patching for the recent VMware advisory VMSA-2018-0027 related to CVE-2018-6981 and CVE-2018-6982.

vpp