Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.
A distribution of Linux Virtual Server with some advanced features. It introduces a new packet forwarding method - FULLNAT other than NAT/Tunneling/DirectRouting, and defense mechanism against synflooding attack - SYNPROXY.
:vertical_traffic_light:Web Application Firewall or API Gateway(应用防火墙/API网关)
Modern tactical exploitation toolkit.
Unprivileged sandboxing tool
The goal of this repository is to document the most common techniques to bypass AppLocker.
Windows 8.1 and 10 UAC bypass abusing WinSxS in "dccw.exe".
Direct Memory Access (DMA) Attack Software
TinyAntivirus is an open source antivirus engine designed for detecting polymorphic virus and disinfecting it.
Malicious HTTP traffic explorer
A collection of scripts and information for Malware Hunting.
BinaryAlert: Serverless, Real-time & Retroactive Malware Detection
Fast Advanced Spam Analysis Tool
Moloch is an open source, large scale, full packet capturing, indexing, and database system.
A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.