A collective list of free APIs

an awesome list of honeypot resources

FakeNet-NG - Next Generation Dynamic Network Analysis Tool

Bruteforce database

Lists of .NET Obfuscator (Free, Freemium, Paid and Open Source )

Demisto is now Cortex XSOAR. Automate and orchestrate your Security Operations with Cortex XSOAR's ever-growing Content Repository. Pull Requests are always welcome and highly appreciated!

A VBA parser and emulation engine to analyze malicious macros.

Chepy is a python lib/cli equivalent of the awesome CyberChef tool.

Real-time, container-based file scanning at enterprise scale

Online hash checker for Virustotal and other services

A Linux Ransomware

A quick and dirty HTTP/S "organic" traffic generator.

A VBA p-code disassembler

Event Tracing For Windows (ETW) Resources

CVE-2017-11882 Exploit accepts over 17k bytes long command/code in maximum.

Open Source Threat Intelligence Chat Bot

Ransomware leak site monitoring

Code and yara rules to detect and analyze Cobalt Strike

Cobalt Strike Beacon configuration extractor and parser.

The foghorn project is a DNS proxy intended to reduce user exposure to phishing and other malicious items that can be interdicted by DNS greylisting

Build AI-powered security tools. 50+ hands-on labs covering ML, LLMs, RAG, threat detection, DFIR, and red teaming. Includes Colab notebooks, Docker environment, and CTF challenges.

Parser for Windows PowerShell script block logs

Tool for password spraying RDP

Splunk scripted input for opening a backconnect shell on a remote forwarder

Tool for automatic list generation of known TOR and VPN exit nodes

Network Forensics Workshop Files

Automated n8n workflow for ransomware threat monitoring using ransomware.live API and Claude AI — companion to the SANS Ransomware Intelligence webinar

Network Forensics Workshop Deux Files