Control the fans of every Intel Mac to make it run cooler

Windows kernel and user mode emulation.

Lilith - Foundational reverse engineering resource for cybersecurity entrepreneurs in C++

TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs. The idea behind the tool is to facilitate searching and st…

Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do

A cross-platform programmable network tool

old blog

Malicious traffic detection system

A simple parser(library) which extracts shimcache data from windows.

Pure Python 3 MTProto API Telegram client library, for bots too!

Diaphora, the most advanced Free and Open Source program diffing tool.

Community-based integrated malware identification system

A Python library for parsing, manipulating, and generating STIX content.

IFL - Interactive Functions List (plugin for IDA Pro)

APT & CyberCriminal Campaign Collection

Pure JS module for SSDEEP hashing

PowerShell script for deobfuscating encoded PowerShell scripts

oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.

Django web interface for managing Yara rules

the source code of linux-0.11 for study linux kernel

Apache Airflow - A platform to programmatically author, schedule, and monitor workflows

Import arbitrary code from Stack Overflow as Python modules.

Various public documents, whitepapers and articles about APT campaigns

Defund the Police.

Defeating Windows User Account Control

Main Sigma Rule Repository

A tool to download, compile, and install Ruby on Unix-like systems.

Manage your app's Ruby environment