wit0k
Follow
Stars
A codebase aimed to make interaction with Windows and native execution easier
USB Army Knife – the ultimate close access tool for penetration testers and red teamers.
Common framework for designing a detection and response framework for the most common MFT solutions
Repository of tools and resources for analyzing Docker containers
Malware repository component for samples & static configuration with REST API interface.
Script which is able to decrypt data sent to AzoRult 3.3 Server
Course materials for Advanced Binary Deobfuscation by NTT Secure Platform Laboratories
A denial-of-service proof-of-concept for CVE-2020-1350
Malware dynamic instrumentation tool based on frida framework
Various scripts for different malware families
Mentalist is a graphical tool for custom wordlist generation. It utilizes common human paradigms for constructing passwords and can output the full wordlist as well as rules compatible with Hashcat…
Script for parsing Symantec Endpoint Protection logs, VBNs, and ccSubSDK database.
Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().
Incredibly fast crawler designed for OSINT.
📦 de4dot deobfuscator with full support for vanilla ConfuserEx
A collection of source code for various RATs, Stealers, and other Trojans.
SafetyKatz is a combination of slightly modified version of @gentilkiwi's Mimikatz project and @subtee's .NET PE Loader
Docker container for managing Nginx proxy hosts with a simple, powerful interface
DEFCON 27 workshop - Modern Debugging with WinDbg Preview
DEFCON 27 workshop - Modern Debugging with WinDbg Preview
IDA script for vmprotect Windows Api address decoder
hopefully a source-to-source deobfuscator, aiming at deobfuscating common scripts languages such as Powershell, VBA and Javascript. Current status: birth. Based on ANTLR
Fast Conversion Windows Dynamic Link Library To ShellCode