Linux kernel source tree

File formats dissections and more...

awesome-linux-rootkits

Using ftrace for function hooking in Linux kernel

RansomLord is a proof-of-concept Anti-Ransomware exploitation tool that automates the creation of PE files, used to compromise ransomware pre-encryption.

Utility that converts an .etl file containing a Windows network packet capture into .pcapng format.

Common PHP webshells you might need for your Penetration Testing assignments or CTF challenges. Do not host the file(s) on your server!

Free Images for EVE-NG and GNS3 containing routers, switches,Firewalls and other appliances, including Cisco, Fortigate, Palo Alto, Sophos and more. Master the art of networking and improve your sk…

Tools and Techniques for Blue Team / Incident Response

A latent text-to-image diffusion model

Simple random DNS, HTTP/S internet traffic noise generator

A fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.

Useful Techniques, Tactics, and Procedures for red teamers and defenders, alike!

Windows Exploit Suggester - Next Generation

SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be r…

Tools, tips, tricks, and more for exploring ICS Security.

Main Sigma Rule Repository

Rules generated from our investigations.

Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF) via Syswhispers2

Collection of malware source code for a variety of platforms in an array of different programming languages.

Sysmon configuration file template with default high-quality event tracing

Lnk Explorer Command line edition!!

Veil-PowerView is a powershell tool to gain network situational awareness on Windows domains.

Dockerfile examples

scripts to setup environments for red/blue teams.

Utility to execute ELF binary directly from stdin pipe.