Stars
LabelImg is now part of the Label Studio community. The popular image annotation tool created by Tzutalin is no longer actively being developed, but you can check out Label Studio, the open source …
A meterpreter extension for applying hooks to avoid windows defender memory scans
SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) without invalidating or breaking the existing signature.
A command line utility to aid in using autofocus for IR and research
pefile is a Python module to read and work with PE (Portable Executable) files
Security Remediation Guides
Cobalt Strike Malleable C2 Design and Reference Guide
Syscall Shellcode Loader (Work in Progress)
AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Cobalt Strike Malleable C2 profile.
Open Cyber Threat Intelligence Platform
Publication-ready NN-architecture schematics.
Portable Executable reversing tool with a friendly GUI
Analyzers for Portable Executable anomalies and other malware behavior.
EasyPen is a GUI program which helps pentesters do target discovery, vulnerability scan and exploitation
Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows
Automagically reverse-engineer REST APIs via capturing traffic
BloodyAD is an Active Directory Privilege Escalation Framework
☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud
An open-source, real-time Security Information & Event Management tool based on big data technologies, providing a scalable, advanced security analytics framework.
Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made w…
Arsenal is just a quick inventory and launcher for hacking programs