zpaav's starred repositories
DefenderYara
Extracted Yara rules from Windows Defender mpavbase and mpasbase
PowerJoker
PowerJoker is a Dynamic PowerShell Reverse-Shell Generator; Unique Payloads with different results on Each Execution.
EDR-Preloader
An EDR bypass that prevents EDRs from hooking or loading DLLs into our process by hijacking the AppVerifier layer
expressots
A Typescript + Node.js lightweight framework for quick building scalable, easy to read and maintain, server-side applications π
terracognita
Reads from existing public and private cloud providers (reverse Terraform) and generates your infrastructure as code on Terraform configuration
DFIR-Regular-Expressions
Regular Expressions List used in Digital Forensic Tasks
DarkWidow
Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird + Spawns a sacrificial Process as target process + (ACG+BlockDll) mitigation policy on spawned process + PPID spoofing + Api resolving from TIB + API hashing
kubeconform
A FAST Kubernetes manifests validator, with support for Custom Resources!
AWSZeroTrustPolicy
Adaptive AWS Zero Trust Policy made easy: Auto-generate least-privilege policies based on user activity in real time! Accelerate the adoption of smart access control
awesome-pentest-cheat-sheets
Collection of cheat sheets useful for pentesting
SOC-Interview-Questions
SOC Interview Questions
pe_to_shellcode
Converts PE into a shellcode
awesome-graphql-security
A curated list of awesome GraphQL Security frameworks, libraries, software and resources
learning-malware-analysis
This repository contains sample programs that mimick behavior found in real-world malware. The goal is to provide source code that can be compiled and used for learning purposes, without having to worry about handling live malware.
learning-reverse-engineering
This repository contains sample programs written primarily in C and C++ for learning native code reverse engineering.