Popular repositories Loading

1. chainsaw chainsaw Public

   Rapidly Search and Hunt through Windows Forensic Artefacts

   Rust 3.2k 290

2. doublepulsar-detection-script doublepulsar-detection-script Public

   A python2 script for sweeping a network to find windows systems compromised with the DOUBLEPULSAR implant.

   Python 1k 314

3. python-exe-unpacker python-exe-unpacker Public

   A helper script for unpacking and decompiling EXEs compiled from python code.

   Python 960 342

4. CallStackSpoofer CallStackSpoofer Public

   A PoC implementation for spoofing arbitrary call stacks when making sys calls (e.g. grabbing a handle via NtOpenProcess)

   C++ 510 69

5. Kanvas Kanvas Public

   A simple-to-use IR (incident response) case management tool for tracking and documenting investigations.

   Python 317 42

6. LinuxCatScale LinuxCatScale Public

   Incident Response collection and processing scripts with automated reporting scripts

   Shell 305 56