Clik here to view.
malware-jail :sandbox for semi-automatic Javascript malware analysis and...
.Sandbox for semi-automatic Javascript malware analysis and payload extraction. Written for Node.js malware-jail is written for Node’s ‘vm’ sandbox. Currently implements WScript (Windows Scripting...
View ArticleClik here to view.
PowerSCCM – PowerShell module to interact with SCCM databases for both...
PowerSCCM is a Functions to facilitate connections to and queries from SCCM databases for both offensive and defensive applications. The code is kept PowerShell Version 2.0 compliant with no external...
View ArticleClik here to view.
Machinae v1.2.0 – Security Intelligence Collector.
Machinae is a tool for collecting intelligence from public sites/feeds about various security-related pieces of data: IP addresses, domain names, URLs, email addresses, file hashes and SSL...
View ArticleClik here to view.
IRTriage – Windows Evidence Collection for Forensic Analysis can defeat many...
Incident Response Triage – Windows Evidence Collection for Forensic Analysis can defeat many anti-forensics techniques. IRTriage will collect: – system information – network information – registry...
View ArticleClik here to view.
v0lt – Security CTF Toy Tools.
v0lt is an attempt to regroup every tool I used/use/will use in security CTF, Python style. A lot of exercises were solved using bash scripts but Python may be more flexible, that’s why. Nothing to do...
View ArticleClik here to view.
RaTS v0.1b – Ransomware Traces Scanner.
RaTS does not prevent the Ransomware to do its bad work, but it can help to find evidences of the existence of Ransomware in your environment (filesystems). RaTS is especially useful to periodically...
View ArticleClik here to view.
radare2 v0.10.1 Codename: solid chair society released.
changelog v0.10.1 Codename: solid chair society: + Variables and flags can now be renamed in cursor mode asciinema + Optimized GDB connectivity, now its 10x faster! + print signed base 10 hexdumps with...
View ArticleClik here to view.
Machinae v1.3.0 – Security Intelligence Collector.
Changelog Version 1.3.0 (2016-03-07): + New sites Cymon.io – Threat intel aggregator/tracker by eSentire + New features – Support simple paginated responses – Support url encoding ‘target’ in request...
View ArticleClik here to view.
RandomDNS aims to improve the security, privacy and anonymity of DNSCrypt.
RandomDNS simplify and improve the security of DNSCrypt proxy by randomizing the choice of the server. Features + Randomize the provider at runtime + Use (-E)phemeral keys option + Securely run...
View ArticleClik here to view.
Joy v1.1- A package for capturing and analyzing for network research,...
Changelog v1.1: + bumping version b/c of changes to TLS and BD + data tranlation, and SELECT can now have multiple comma-separated fields + added support for a compact byte distribution. Given a...
View ArticleClik here to view.
Lynis v2.2.0 : is a system and security auditing tool for Unix/Linux.
Changelog v2.2.0 : * Highlights The biggest change in this release is the optimization of several functions. It allows for better detection, and dealing with the quirks, of every single operating...
View ArticleClik here to view.
HIDPS is A Python based Intrusion Detection and Prevention System.
HIDPS is A Python based Intrusion Detection and Prevention System. Uses Scapy to sniff packets at a specific interface, extract the remote IPs, scans them using the VirusTotal API and puts them into a...
View ArticleClik here to view.
Eli.Decode is a tool to decode obfuscated shellcodes using the unicorn engine.
Eli.Decode is a tool to decode obfuscated shellcodes using the unicorn engine. Please note + You may have problems or wrong decoded shellcodes… + You need the unicorn engine...
View ArticleClik here to view.
Lynis v2.2.1 : is a system and security auditing tool for Unix/Linux.
Changelog Lynis 2.2.1 (development version): * Documentation ————— Template files have been updated to provide better examples on how to create custom tests and plugins. lynis v2.2.1 lynis v2.2.0...
View ArticleClik here to view.
gef updates – Multi-Architecture GDB Enhanced Features for Exploiters &...
Roadmap and changelog 5/4/2016: + gef.py : heap: added sub-command arenas (issue #22) — heap – added new sub-command fastbins + docs: added gef save/restore gef – Multi-Architecture GDB Enhanced...
View ArticleClik here to view.
Protein – Powershell Anti Ransomware.
PROTEIN – PROTEct your INformation .SYNOPSIS + PROTEIN captures the action of creation new files, analyzing them and determining whether they are valid or not for the corporation. + PROTEIN Identifies...
View ArticleClik here to view.
Loki – Simple IOC and Incident Response Scanner.
Scanner for Simple Indicators of Compromise Detection is based on four detection methods: 1. File Name IOC Regex match on full file path/name 2. Yara Rule Check Yara signature match on file data and...
View ArticleClik here to view.
RansomwareRestore – A module to identify and restore files which have been...
The RansomwareRestore module was created after my work had repeated malware infections, which took client’s files offline for days at a time. This module was developed to accelerate the identification,...
View ArticleClik here to view.
Maldet v1.5.1 – Linux Malware Detect(LMD).
changelog v1.5.1: + [Fix] uninstall.sh was not shutting off monitor mode on uninstall; issue #134 Linux Malware Detect (LMD) is a malware scanner for Linux released under the GNU GPLv2 license, that is...
View ArticleClik here to view.
Android APK automatic auditor.
Android APK automatic auditor for vulnerabilities in rust language. with flag: FLAGS: –force If you’d like to force the auditor to do everything from the beginning. -h, –help Prints help information...
View Article