AI-Powered Reverse Engineering Plugin for IDA Pro

IDA Python Script to Get All function names from Event Constructor (VCL)

Lockbit, URSIF, BlackBasta etc.

This repository contains indicators of compromise (IOCs) of our various investigations.

Converted phnt (Native API header files from the System Informer project) to IDA TIL, IDC (Hex-Rays).

IDA/Binary Ninja Plugin to automatically identify and set enums for standard functions

VMProtect 2.x-3.x x64 Import Deobfuscator

IoT固件漏洞复现环境

Rusty Bootkit - Windows UEFI Bootkit in Rust (Codename: RedLotus)

CYBER ESPIONAGE IN PALESTINE REGION

一个支持windows/linux/mac的文本编辑器，目标是做中国人自己的编辑器，来自中国。

Vocabulary for Event Recording and Incident Sharing (VERIS)

A Google Earth Engine tool for identifying satellite radar interference.

Generic unpacker (dynamic)

The Binarly Firmware Hunt (FwHunt) rule format was designed to scan for known vulnerabilities in UEFI firmware.

Tools for analyzing UEFI firmware and checking UEFI modules with FwHunt rules

Helper plugin for generating FwHunt compliant rules in IDA

This is a database of 300.000+ symbols containing Equities, ETFs, Funds, Indices, Currencies, Cryptocurrencies and Money Markets.

Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.

Proofpoint - Emerging Threats - Threat Research tools + publicly shared intel and documentation

The FLARE team's open-source tool to identify capabilities in executable files.

Investigate malicious Windows logon by visualizing and analyzing Windows event log

redroid (Remote-Android) is a multi-arch, GPU enabled, Android in Cloud solution. Track issues / docs here

Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups

An step by step fuzzing tutorial. A GitHub Security Lab initiative

CVE-2020-14882 EXP 回显

This repository hosts community contributed Kestrel analytics

Vulnerability research notes for VirtualBox and QEMU. Contains debug environment setup notes, a PoC template, exploit primitive notes, and more.