Rapidly Search and Hunt through Windows Forensic Artefacts
A python2 script for sweeping a network to find windows systems compromi...
A helper script for unpacking and decompiling EXEs compiled from python ...
A PoC implementation for spoofing arbitrary call stacks when making sys ...
A python2 script for processing a PCAP file to decrypt C2 traffic sent t...
Incident Response collection and processing scripts with automated repor...
A utility to use the usermode shellcode from the DOUBLEPULSAR payload to...
https://blog.f-secure.com/hiding-malicious-code-with-module-stomping/
A spiritual .NET equivalent to the Gargoyle memory scanning evasion tech...
AMSI detection PoC