vhumint

attack-website

MITRE ATT&CK Website

blackhat-arsenal-tools

Official Black Hat Arsenal Security Tools Repository

community

Open-source ATT&CK procedures

flare-floss

FireEye Labs Obfuscated String Solver - Automatically extract obfuscated strings from malware.

LOLBAS

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

malwoverview

Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, ThreatCrowd, Valhalla, Malware Bazaar, ThreatFox, Triage and it is able to scan Android devices against VT and HA.

masscan

TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

Microsoft-365-Defender-Hunting-Queries

Sample queries for Advanced hunting in Microsoft 365 Defender

misp-training

MISP trainings, threat intel and information sharing training materials with source code

Orion

A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...

oswar

Comprehensive framework that identifies, categorizes, and mitigates Web3-related attacks and vulnerabilities

Phant0m

Windows Event Log Killer

Blockchain-dark-forest-selfguard-handbook

Blockchain dark forest selfguard handbook. Master these, master the security of your cryptocurrency.

blockchain-threat-intelligence

Blockchain Threat Intelligence Sharing Platform（区块链威胁情报共享平台）

BloodHound

Six Degrees of Domain Admin

building-secure-contracts

Guidelines and training material to write secure smart contracts

capa

The FLARE team's open-source tool to identify capabilities in executable files.

Crypto-OpSec-SelfGuard-RoadMap

Here we collect and discuss the best DeFi, Blockchain and crypto-related OpSec researches and data terminals - contributions are welcome.

CVE-2021-31166

Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.

echidna

Ethereum smart contract fuzzer

GTFOBins.github.io

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

icedid_analysis

This repository contains analysis scripts, YARA rules, and additional IoCs related to the blog post "Let’s set ice on fire: Hunting and detecting IcedID infections".

livestream_saver

Download Youtube live-streams from the first segment

My-Cryptocurrency

Cryptocurrency and blockchain protecting assets against the state of exception, non-conviction based confiscation and civil asset forfeiture.

On-Chain-Investigations-Tools-List

Here we discuss how one can investigate crypto hacks and security incidents, and collect all the possible tools and manuals! PRs are welcome! If any tool is missing - please open PR!

Ransomchats

SimuLand

Understand adversary tradecraft and improve detection strategies

slither

Static Analyzer for Solidity and Vyper

Voltaire

Web application to create indexes for GIAC certification examinations.

WalletLabels

A web app to search Ethereum wallets by names or labels.