Incident Response & Digital Forensics Debugging Extension

Simple Virtual Machine Manager in Golang

A Go Package for the Shortcut (was called "Clubhouse") API

NVIDIA Linux open GPU kernel module source

Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)

Automatic deployment of Cuckoo Sandbox malware lab using Packer and Vagrant

My vagrantfile for building a malware/memory analysis platform.

Builds malware analysis Windows VMs so that you don't have to.

A collection of unoffical scripts, code snippets for TheHive Project

Agile Threat Modeling Toolkit

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static a…

Chat over SSH.

opensnoop in pure C using eBPF

Impacket is a collection of Python classes for working with network protocols.

A swiss army knife for pentesting networks

pefile is a Python module to read and work with PE (Portable Executable) files

The source for the Linux kernel used in Windows Subsystem for Linux 2 (WSL2)

Stealthy backdoor for Windows operating systems

Universal PatchGuard and Driver Signature Enforcement Disable

Turn off PatchGuard in real time for win7 (7600) ~ later

Disable PatchGuard and Driver Signature Enforcement at boot time

Hypervisor based tool for monitoring system register accesses.

Fun with the Windows Subsystem for Linux (WSL/LXSS)

Tool for injecting a shared object into a Linux process

pseudo-code to show how to disable patchguard with win10

High-level tracing language for Linux

Final code base for SBR project