BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Browser Protector against various stealers, written in C# & C/C++.

LLMNR/NBNS/mDNS Spoofing Detection Toolkit

ETWNetMonv3 is simple C# code for Monitoring TCP Network Connection via ETW & ETWProcessMon/2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.

Receive the status of Windows Defender Credential Guard on network hosts.

Configuration extraction tool for XWorm RAT Client. Tested on XWorm 3.1.

Mergen is a project that facilitates the analysis of traffic by logging incoming web traffics to ASP.NET applications broadcasting with Microsoft IIS (Internet Information Services) service.