GoAccess is a real-time web log analyzer and interactive viewer that runs in a terminal in *nix systems or through your browser.

Sandboxie Plus & Classic

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

The pattern matching swiss knife

🍯 T-Pot - The All In One Multi Honeypot Platform 🐝

SSH tarpit that slowly sends an endless banner

Simple tool to configure Windows Filtering Platform (WFP) which can configure network activity on your computer.

This repo contains driver samples prepared for use with Microsoft Visual Studio and the Windows Driver Kit (WDK). It contains both Universal Windows Driver and desktop-only driver samples.

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.

User mode file system library for windows with FUSE Wrapper

Lossy PNG compressor — pngquant command based on libimagequant library

The Sandboxie application

🌴Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)

WinDivert: Windows Packet Divert

HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux

Arduino STM32. Hardware files to support STM32 boards, on Arduino IDE 1.8.x including LeafLabs Maple and other generic STM32F103 boards

Bring enhanced HID functions to your Arduino!

Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).

🇺🇦 Windows driver with usermode interface which can hide processes, file-system and registry objects, protect processes and etc

NCNN implementation of Real-ESRGAN. Real-ESRGAN aims at developing Practical Algorithms for General Image Restoration.

Windows tool for dumping malware PE files from memory back to disk for analysis.

Arduino core for ATtiny 1634, 828, x313, x4, x41, x5, x61, x7 and x8

The Interception API aims to build a portable programming interface that allows one to intercept and control a range of input devices.

Files to add Digistump support (Digispark, Pro, DigiX) to Arduino 1.6.X (1.6.5+)

The multi-platform memory acquisition tool.

16u2 Bootloader to reprogram 16u2 + 328/2560 with Arduino IDE

The functions interception library written on pure C and NativeAPI with UserMode and KernelMode support

The Python interface for YARA

Deviare API Hook

WinRing0 is a hardware access library for Windows.