An easy-to-use library for emulating memory dumps. Useful for malware analysis (config extraction, unpacking) and dynamic analysis in general (sandboxing).

C 780 44 Updated Feb 2, 2024

burrowers / garble

Obfuscate Go builds

Go 4,373 275 Updated Feb 22, 2025

ufrisk / MemProcFS

MemProcFS

C 3,395 425 Updated Mar 1, 2025

panda-re / panda

Platform for Architecture-Neutral Dynamic Analysis

C 2,552 484 Updated Mar 3, 2025

crocodyli / ThreatActors-TTPs

Repository created to share information about tactics, techniques and procedures used by threat actors. Initially with ransomware groups and evolving to other types of threats.

258 36 Updated Jan 20, 2025

wwh1004 / ExtremeDumper

.NET Assembly Dumper

C# 878 194 Updated Feb 2, 2023

bing0o / SubEnum

bash script for Subdomain Enumeration

Shell 350 65 Updated Feb 11, 2025

ohadmata / shmessy

If your data is messy - Use Shmessy!

Python 28 1 Updated Jun 27, 2024

travisbgreen / hunting-rules

Suricata rules for network anomaly detection

156 43 Updated Feb 18, 2025

telekom-security / tpotce

🍯 T-Pot - The All In One Multi Honeypot Platform 🐝

C 7,478 1,162 Updated Mar 3, 2025

timb-machine / linux-malware

Tracking interesting Linux (and UNIX) malware. Send PRs

HTML 1,170 95 Updated Feb 21, 2025

0xDanielLopez / TweetFeed

TweetFeed collects Indicators of Compromise (IOCs) shared by the infosec community at Twitter. Here you will find malicious URLs, domains, IPs, and SHA256/MD5 hashes.

527 58 Updated Mar 5, 2025

k1nd0ne / VolWeb

A centralized and enhanced memory analysis platform

TypeScript 432 47 Updated Feb 3, 2025

hasherezade / pe-sieve

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

C++ 3,236 442 Updated Feb 27, 2025

Cryakl / Ultimate-RAT-Collection

For educational purposes only, exhaustive samples of 450+ classic/modern trojan builders including screenshots.

680 191 Updated Feb 20, 2025

jermanuts / bad-opsec

Collection of links on bad opsec

91 8 Updated May 31, 2024

decalage2 / ViperMonkey

A VBA parser and emulation engine to analyze malicious macros.

Python 1,075 186 Updated Jul 10, 2024

infosecB / awesome-detection-engineering

Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifyin…

932 85 Updated Jan 21, 2025

CERT-Polska / mquery

YARA malware query accelerator (web frontend)

Python 421 77 Updated Feb 28, 2025

sonertari / SSLproxy

Transparent SSL/TLS proxy for decrypting and diverting network traffic to other programs, such as UTM services, for deep SSL inspection

C 414 103 Updated Dec 19, 2024

tsale / TeleTracker

TeleTracker is a simple set of Python scripts designed for anyone investigating Telegram channels. It helps you send messages quickly and gather useful channel information easily.

Python 413 51 Updated Jun 15, 2024

Storyyeller / Krakatau

Java decompiler, assembler, and disassembler

Rust 2,026 225 Updated Feb 1, 2025

googleprojectzero / sandbox-attacksurface-analysis-tools

Set of tools to analyze Windows sandboxes for exposed attack surface.

C# 2,123 438 Updated Dec 4, 2024

jstrosch / learning-reverse-engineering

This repository contains sample programs written primarily in C and C++ for learning native code reverse engineering.

C 546 87 Updated Jan 13, 2024

jstrosch / learning-malware-analysis

This repository contains sample programs that mimick behavior found in real-world malware. The goal is to provide source code that can be compiled and used for learning purposes, without having to …

C 629 75 Updated Jul 6, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

brkalbyrk7

Block or report brkalbyrk7

Stars

c3rb3ru5d3d53c / binlex

EgeBalci / deoptimizer

chainguard-dev / osquery-defense-kit

target / strelka

magic-wormhole / magic-wormhole

mrexodia / dumpulator