Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.

Detours is a software package for monitoring and instrumenting API calls on Windows. It is distributed in source code form.

Python Script for integrating IBM QRadar SIEM with Jira Ticketing System, in order to open tickets automatically on Jira.

A python module for working with ATT&CK

MemProcFS

This repo contains driver samples prepared for use with Microsoft Visual Studio and the Windows Driver Kit (WDK). It contains both Universal Windows Driver and desktop-only driver samples.

Samples for the book Windows Kernel Programming, 2nd edition

Please no pull requests for this repository. Thanks!

A repository of sysmon configuration modules

A not so awesome list of malware gems for aspiring malware analysts

Sigma rule specification

Labs for Practical Malware Analysis & Triage

The pattern matching swiss knife

Generic Signature Format for SIEM Systems

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

PdfParser, a standalone PHP library, provides various tools to extract data from a PDF file.

CTFs as you need them

[Node, Python, Java] Repository of sample Custom Rules for AWS Config.

Collection of malware source code for a variety of platforms in an array of different programming languages.

Cloud-native SIEM for intelligent security analytics for your entire enterprise.

A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk

Arsenal is just a quick inventory and launcher for hacking programs

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

A curated list of awesome threat detection and hunting resources

research tool for the analysis of malicious pdf documents. make sure to run the installer first to get all of the 3rd party dlls installed correctly.

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.