Ghidra is a software reverse engineering (SRE) framework
updated at May 26, 2024, 5:26 a.m.
An advanced memory forensics framework
updated at May 26, 2024, 4:12 a.m.
Please no pull requests for this repository. Thanks!
updated at May 26, 2024, 3:04 a.m.
A modern tool for Windows kernel exploration and tracing with a focus on security
updated at May 26, 2024, 1:36 a.m.
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
updated at May 25, 2024, 9:52 p.m.
A toolset to make a system look as if it was the victim of an APT attack
updated at May 25, 2024, 9:23 p.m.
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
updated at May 25, 2024, 9:21 p.m.
A curated list of awesome forensic analysis tools and resources
updated at May 25, 2024, 7:47 p.m.
A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.
updated at May 25, 2024, 6:22 p.m.