meiningnie

HookNdis

a network filter using NDIS hook technique

RProtect

An extensible framework of active-defense system.

drakvuf

DRAKVUF Dynamic Malware Analysis System

evil.sh

Subtle and not-so-subtle shell tweaks that will slowly drive people insane.

aarch64_dockerfiles

Dockerfiles for aarch64

al-khaser

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

dangzero

etherannotate_xen

EtherAnnotate Xen Ether Modification - Adds a feature to Ether that pulls register values and potential string values at each instruction during an instruction trace.

file

Read-only mirror of file CVS repository, updated every half hour. NOTE: do not make pull requests here, nor comment any commits, submit them usual way to bug tracker or to the mailing list. Maintainer(s) are not tracking this git mirror.

gr-air-modes

Gnuradio Mode-S/ADS-B radio

Laelaps

mysql-docker

Dockerfiles and scripts for MySQL products

passdown

passive downloading

pdbparse

a C++ library which will automatically download a module's PDB file, then parse it for a function address

processor-trace

libipt - an Intel(R) Processor Trace decoder library

Psychson

Phison 2251-03 (2303) Custom Firmware & Existing Firmware Patches (BadUSB)

sysmon-config

Sysmon configuration file template with default high-quality event tracing

Terminal

The new Windows Terminal, and the original Windows console host -- all in the same place!

UPGDSED

Universal PatchGuard and Driver Signature Enforcement Disable

volatility

An advanced memory forensics framework

xplico

Open Source Network Forensic Analysis Tool (NFAT)

xunlei-lixian

迅雷离线下载脚本