EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.
updated at May 25, 2024, 8:21 a.m.
FakeNet-NG - Next Generation Dynamic Network Analysis Tool
updated at May 25, 2024, 7:06 a.m.
ngrep is like GNU grep applied to the network layer. It's a PCAP-based tool that allows you to specify an extended regular or hexadecimal expression to match against data payloads of packets. It understands many kinds of protocols, including IPv4/6, TCP, UDP, ICMPv4/6, IGMP and Raw, across a wide variety of interface types, and understands BPF filter logic in the same fashion as more common packet sniffing tools, such as tcpdump and snoop.
updated at May 25, 2024, 3:55 a.m.
This is the development tree. Production downloads are at:
updated at May 25, 2024, 12:15 a.m.
Collection of almost 40.000 javascript malware samples
updated at May 25, 2024, 12:11 a.m.
Plasma is an interactive disassembler for x86/ARM/MIPS. It can generates indented pseudo-code with colored syntax.
updated at May 24, 2024, 8:38 p.m.
HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.com), which can be used for automated malware analysis and security assessment on the Linux system.
updated at May 24, 2024, 5:07 p.m.
BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.
updated at May 24, 2024, 4:41 p.m.
A curated list of resources related to Industrial Control System (ICS) security.
updated at May 24, 2024, 3:42 p.m.