1383 Open source projects that are alternatives of or similar to Awesome Csirt

The Correlated CVE Vulnerability And Threat Intelligence Database API

Exploits by 1N3 @CrowdShield @xer0dayz @XeroSecurity

🐺 Malware analysis platform

Malware Analysis, Threat Intelligence and Reverse Engineering: LABS

PatrowlHears - Vulnerability Intelligence Center / Exploits

Some personal exploits/pocs

Android virtual machine and deobfuscator

软件安全工程师技能表

Toolkit for enriching and speeding up static malware analysis

makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

《macOS软件安全与逆向分析》勘误

Poc Collected for study and develop

idenLib - Library Function Identification [This project is not maintained anymore]

Exploit Development and Reverse Engineering with GDB Made Easy

A pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

A collection of curated Java Deserialization Exploits

RouterOS Security Research Tooling and Proof of Concepts

🐈Medusa是一个红队武器库平台，目前包括扫描功能(200+个漏洞)、XSS平台、协同平台、CVE监控等功能，持续开发中 http://medusa.ascotbe.com

The PE file analysis toolkit

Micro-framework for rapid development of reusable security tools

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

Bringing you the best of the worst files on the Internet.

Collection of scripts for different malware analysis tasks

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

A social experiment

Collaborative malware analysis framework

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging features for exploit developers & reverse engineers ☢

《macOS软件安全与逆向分析》随书源码

DRAKVUF Sandbox - automated hypervisor-level malware analysis system

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

Quickly analyze and reverse engineer Android packages

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Android Reverse-Engineering Workbench for VS Code

Setup scripts for my Malware Analysis VMs

A machine learning tool that ranks strings based on their relevance for malware analysis.

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

Exploit Pack -The next generation exploit framework

Drltrace is a library calls tracer for Windows and Linux applications.

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

🌴Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file

🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more

CLI tool to analyze PE files

Miscellaneous exploit code

With the hope that someone finds the data useful, we periodically publish an archive of almost all of the non-sensitive vulnerability information in our vulnerability reports database. See also https://github.com/CERTCC/Vulnerability-Data-Archive-Tools

Malcom - Malware Communications Analyzer

Select proof-of-concept exploits for software vulnerabilities to aid in identifying and testing vulnerable systems.

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

CVE、CMS、中间件漏洞检测利用合集 Since 2019-9-15

A toolkit for Security Researchers

PoC materials for article https://habr.com/en/post/486856/

A binary analysis framework

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

BeSafe is robust threat analyzer which help to protect your desktop environment and know what's happening around you

Livro: Fundamentos de Engenharia Reversa