A collection of files with indicators supporting social media posts from Palo Alto Network's Unit 42 team to disseminate timely threat intelligence.

MBC content in markdown

PE bin2bin obfuscator

Native code virtualizer for x64 binaries

x64 binary obfuscator

This repo contains some Amsi Bypass methods i found on different Blog Posts.

AV/EDR Lab environment setup references to help in Malware development

Document ETW providers

A collection of (mostly) technical things every software developer should know about

A completely free, open source and online course about Reverse Engineering iOS Applications.

Tools for analyzing EDR agents

Now You See Me, Now You Don't

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

Enumerate and disable common sources of telemetry used by AV/EDR.

A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities

windows kernel security development

windows kernel security development

PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap

Some of my windows kernel exploits for learning purposes

Resources for Windows exploit development

The Template Injection Playground allows to test a large number of the most relevant template engines for template injection possibilities.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Automated deployment of Windows and Active Directory test lab networks. Useful for red and blue teams.

A simple NDK-based application on which to demonstrate some important attack strategies.

ANE kernel r/w exploit for iOS 15 and macOS 12

A reference of Windows API function calls, including functions for file operations, process management, memory management, thread management, dynamic-link library (DLL) management, synchronization,…

This repository is a suplimentary material for Android Training's done by Anant Shrivastava from 2012-2017