x0341's starred repositories
MalwareSourceCode
Collection of malware source code for a variety of platforms in an array of different programming languages.
proxychains-ng
proxychains ng (new generation) - a preloader which hooks calls to sockets in dynamically linked programs and redirects it through one or more socks/http proxies. continuation of the unmaintained proxychains project. the sf.net page is currently not updated, use releases from github release page instead.
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
DetectionLab
Automate the creation of a lab environment complete with security tooling and logging best practices
ThreatHunter-Playbook
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
malwoverview
Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT.
sysmon-modular
A repository of sysmon configuration modules
Invoke-TheHash
PowerShell Pass The Hash Utils
malware-samples
Malware samples, analysis exercises and other interesting resources.
CobaltStrike-ToolKit
Some useful scripts for CobaltStrike
awesome-detection-engineering
Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.
community-threats
A place to share attack chains for testing people, process, and technology with the entire community. The largest, public library of adversary emulation and adversary simulation plans! #ThreatThursday
list-infosec-encyclopedia
A list of information security related awesome lists and other resources.
purple-team-exercise-framework
Purple Team Exercise Framework
wsb-detect
wsb-detect enables you to detect if you are running in Windows Sandbox ("WSB")
atomic-operator
A Python package is used to execute Atomic Red Team tests (Atomics) across multiple operating system environments.
xxooxxooxx.github.io
…(⊙_⊙;)…
.OnionSearcher
(dot)Onion Searcher. An open source, anonymous, no-script friendly, ads free, search engine dedicated to the Tor network
labs-DemoLab
A very simple lab to demo some Terraform, DSC, Inspec and Gitlab CI
MetaOSINT.github.io
A tool to quickly identify relevant, publicly-available open source intelligence ("OSINT") tools and resources, saving valuable time during investigations, research, and analysis.