-
ClickGrab Public
Finding ClickFix and FakeCAPTCHA like it's 1999
-
sigma Public
Forked from SigmaHQ/sigmaGeneric Signature Format for SIEM Systems
-
Package-Inferno Public
A Public Package Scanner for The Community
Python Apache License 2.0 UpdatedNov 24, 2025 -
NPM-Threat-Emulation Public
Helping defenders learn and validate npm supply-chain detections with safe atomic tests.
-
PowerShell-Hunter Public
PowerShell tools to help defenders hunt smarter, hunt harder.
-
defender2db_data Public
Forked from dobin/defender2db_dataData from defender2db
Python UpdatedOct 13, 2025 -
atomic-red-team Public
Forked from redcanaryco/atomic-red-teamSmall and highly portable detection tests based on MITRE's ATT&CK.
-
MSIXBuilder Public
MSIX Building Made Easy for Defenders
-
-
AppLockerInspector Public
Forked from techspence/AppLockerInspectorAudits an AppLocker policy XML and reports weak/misconfigured/risky settings, including actual ACL checks.
-
ModSecurity Public
Forked from owasp-modsecurity/ModSecurityModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a rang…
-
ASRGEN Public
ASR Configurator, Essentials and Atomic Testing
-
-
Darkside Public
Forked from ph4nt0mbyt3/DarksideC# AV/EDR Killer using less-known driver (BYOVD)
C# UpdatedFeb 26, 2025 -
-
-
-
-
KrbRelayUp Public
Forked from Dec0ne/KrbRelayUpKrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).
-
-
CVE-2024-4040 Public
Forked from airbus-cert/CVE-2024-4040Scanner for CVE-2024-4040
Python UpdatedMay 16, 2024 -
AtomicLua Public
A combination of OffensiveLua and Learning Lua - By Defenders, for Defenders
C Apache License 2.0 UpdatedMay 10, 2024 -
HackerArt Public
Forked from techspence/HackerArtA collection of art inspired by the world of cybersecurity and hacking culture.
-
sysmon-dfir Public
Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.
-
sigZap Public
SigZap is a Streamlit application designed to facilitate the search across multiple network signature sets at once.
-
-
-
signature-base Public
Forked from Neo23x0/signature-baseYARA signature and IOC database for my scanners and tools
YARA Other UpdatedSep 14, 2023 -
HVCI-loldrivers-check Public
Forked from trailofbits/HVCI-loldrivers-checkPowerShell UpdatedAug 28, 2023 -
SnakeMalware Public
Scripts and References for Snake Malware
PowerShell Apache License 2.0 UpdatedAug 2, 2023
{{ message }}