1383 Open source projects that are alternatives of or similar to Awesome Csirt

Malcom - Malware Communications Analyzer

Poc Collected for study and develop

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

《macOS软件安全与逆向分析》勘误

Miscellaneous exploit code

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

Linker/Compiler/Tool detector for Windows, Linux and MacOS.

A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.

✍️ A curated list of CVE PoCs.

Advanced and easy to use penetration testing framework 💣🔎

A SDK for the creation of analysis tools without obtaining app source code in order to profile runtime performance, examine code coverage, and track high-risk behaviors of a given app on Android 5.0 and above.

A command line tool to find malwares on http://openmalware.org

RouterOS Security Research Tooling and Proof of Concepts

Personal compilation of APT malware from whitepaper releases, documents and own research

APK/DEX detector for Windows, Linux and MacOS.

.NET runtime inspector

Authors

A toolkit for Security Researchers

Malware Sample Sources

Defund the Police.

Cmulator is ( x86 - x64 ) Scriptable Reverse Engineering Sandbox Emulator for shellcode and PE binaries . Based on Unicorn & Zydis Engine & javascript

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in conjunction with these exploits.

Botnet targeting Windows machines written entirely in Python & open source security project.

A social experiment

Livro: Fundamentos de Engenharia Reversa

Malware hashes for open source projects.

Yara rules written by me, for free use.

Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.

makin - reveal anti-debugging and anti-VM tricks [This project is not maintained anymore]

Drltrace is a library calls tracer for Windows and Linux applications.

🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging features for exploit developers & reverse engineers ☢

Exploit Development and Reverse Engineering with GDB Made Easy

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Quickly analyze and reverse engineer Android packages

软件安全工程师技能表

Android Reverse-Engineering Workbench for VS Code

A pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis

Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)

CVE、CMS、中间件漏洞检测利用合集 Since 2019-9-15

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

PoC materials for article https://habr.com/en/post/486856/

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

Java / Kotlin Decompiler and AST Library

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

IDA Pro for macOS绿化

A collection of useful scripts for Cobalt Strike

📡 A python program to create a fake AP and sniff data.

SpectreExploit POC

Python 3 bridge to Ghidra's Python scripting

oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.

Game Boy ROM disassembler with RGBDS compatible output

A Cloudflare resolver that works

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

Human and machine readable web vulnerability testing format

The Java Disassembler