Replace the .txt section of the current loaded modules from \KnownDlls\ ...
CSS trick/bug to display a brighter white by exploiting browsers' HDR ca...
PoC memory injection detection agent based on ETW, for offensive and def...
Customizable SIEM and XDR powered by Real-Time correlation and Threat In...
A Dropper POC with a focus on aiding in EDR evasion, NTDLL Unhooking fol...
Carbon Black API - Python language bindings
Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike ...
MDE Tester is designed to help testing various features in Microsoft Def...
Windows user-land hooks manipulation tool.
A really good DFIR automation for collecting and analyzing evidence desi...
Tools to automate and/or expedite response.
An IDE and translation engine for detection engineers and threat hunters...
Roota is a public-domain language of threat detection and response that ...
WhiteBeam: Transparent endpoint security
Yet another C++ Cobalt Strike beacon dropper with Compile-Time API hashi...