rahmiy Goto Github PK

maltrieve

A tool to retrieve malware directly from the source for security researchers.

malware

Rootkits | Backdoors | Sniffers | Virus | Ransomware | Steganography | Cryptography | Shellcodes | Webshells | Keylogger | Botnets | Worms | Other Network Tools

malware-1

Malware samples from honeypots

malware-gems

A not so awesome list of malware gems for aspiring malware analysts

malware-ir-tools-resources

This Repo contains resource for Malware Analysis, Incident Response, Threat Intelligence, Threat Hunting

malware-misc-re

Miscellaneous Malware RE

malware_analysis

Various snippets created during malware analysis

malware_analysis_tools

malwareworld

System based on +500 blacklists and 5 external intelligences to detect internet potencially malicious hosts

malwless

Test Blue Team detections without running any attack.

malwoverview

Malwoverview.py is a first response tool to perform an initial and quick triage in a directory containing malware samples, specific malware sample, suspect URL and domains. Additionally, it allows to download and send samples to main online sandboxes.

managedinjection

A proof of concept for dynamically loading .net assemblies at runtime with only a minimal convention pre-knowledge

manati

A web-based tool to assist the work of the intuitive threat analysts.

masscan

TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

massdns

A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)

matire

Malware Analysis, Threat Intelligence and Reverse Engineering: LABS

megadev

Bro IDS + ELK Stack to detect and block data exfiltration

meta-blue

Meta-Blue is a powershell threat hunting tool with least frequency of occurence analysis in mind.

meterssh

MeterSSH is a way to take shellcode, inject it into memory then tunnel whatever port you want to over SSH to mask any type of communications as a normal SSH connection. The way it works is by injecting shellcode into memory, then wrapping a port spawned (meterpeter in this case) by the shellcode over SSH back to the attackers machine. Then connecting with meterpreter's listener to localhost will communicate through the SSH proxy, to the victim through the SSH tunnel. All communications are relayed through the SSH tunnel and not through the network.

mimikatz_detection

mimikittenz

A post-exploitation powershell tool for extracting juicy info from memory.

mimipenguin

A tool to dump the login password from the current linux user

minemeld

Main MineMeld documentation repo

minemeld-docker

Official Palo Alto Networks MineMeld docker

minimalistic-offensive-security-tools

A repository of tools for pentesting of restricted and isolated environments.

misc-powershell-scripts

Random Tools

misp-warning-lists

mistica

An open source swiss army knife for arbitrary communication over application protocols

mkyara

Generating YARA rules based on binary code

moddetective

modDetective is a small Python tool that chronologizes files based on modification time in order to investigate recent system activity.