m4now4r's repositories
VidarStealer
Notes some analysis related to VidarStealer sample
Presentations
My conference presentations
Awesome-KAPE
A curated list of KAPE-related resources
Binary-Learning
滴水逆向初、中级学习笔记,不定时更新,自用仓库,不喜勿喷;感谢滴水,有如此完整体系的学习视频,白嫖党嫖了一波...感谢海东老师以及其他课程老师,听课受益匪浅。
Computer-forensics
The best tools and resources for forensic analysis.
DFIRMindMaps
A repository of DFIR-related Mind Maps geared towards the visual learners!
golang_struct_builder
IDA 7.0+ script that auto-generates structs and interfaces from runtime metadata found in golang binaries
HermeticWizard
It is a worm that was deployed on a system in Ukraine at 14:52:49 on February 23rd, 2022 UTC.
Hyara
Yara rule making tool (IDA Pro & Binary Ninja & Cutter & Ghidra Plugin)
IDAPython-Example
IDAPython Example
illuminatejs
IlluminateJS is a static JavaScript deobfuscator
malware_analysis
Scripts, Yara rules and other files developed during malware investigations
MemoryModule
Library to load a DLL from memory.
RedTeam-Tactics-and-Techniques
Red Teaming Tactics and Techniques
threat-hunting-malware-analysis-incident-response
Some portable tools, some YARA, some Python, and a little bit of love. Not all of these tools can be used in incident response. Use PEs with caution.
Windows-auditing-mindmap
Set of Mindmaps providing a detailed overview of the different #Windows auditing capacities and event log files.