Skip to content
View eversinc33's full-sized avatar
๐Ÿ—๏ธ
๐Ÿ—๏ธ
476 followers · 226 following

Achievements

Achievement: Starstruckx2Achievement: QuickdrawAchievement: Pull Sharkx2Achievement: Arctic Code Vault Contributor

Achievements

Achievement: Starstruckx2Achievement: QuickdrawAchievement: Pull Sharkx2Achievement: Arctic Code Vault Contributor

Block or report eversinc33

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this userโ€™s behavior. Learn more about reporting abuse.

Report abuse
Stars

๐Ÿ“˜ Blue Team

19 repositories

mandiant / capa

The FLARE team's open-source tool to identify capabilities in executable files.

Python 4,863 561 Updated Nov 11, 2024

volatilityfoundation / volatility3

Volatility 3.0 development

Python 2,679 460 Updated Nov 8, 2024

sans-blue-team / DeepBlueCLI

PowerShell 2,186 354 Updated Oct 14, 2023

SwiftOnSecurity / sysmon-config

Sysmon configuration file template with default high-quality event tracing

4,800 1,708 Updated Jul 3, 2024

viper-framework / viper

Binary analysis and management framework

Python 1,539 350 Updated Jun 7, 2023

MISP / MISP

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

PHP 5,370 1,398 Updated Nov 11, 2024

elceef / dnstwist

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

Python 4,906 774 Updated Sep 28, 2024

zimnyaa / noWatch

Implant drop-in for EDR testing

C 127 19 Updated Nov 15, 2023

OALabs / BlobRunner

Quickly debug shellcode extracted during malware analysis

C 563 81 Updated May 23, 2023

DidierStevens / DidierStevensSuite

Please no pull requests for this repository. Thanks!

Python 2,018 529 Updated Nov 2, 2024

hasherezade / pe-sieve

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

C++ 3,096 433 Updated Nov 6, 2024

mandiant / flare-vm

A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.

PowerShell 6,571 917 Updated Nov 6, 2024

WithSecureLabs / chainsaw

Rapidly Search and Hunt through Windows Forensic Artefacts

Rust 2,866 264 Updated Nov 10, 2024

Johnng007 / Live-Forensicator

A suite of Tools to aid Incidence Response and Live Forensics for - Windows (Powershell) | Linux (Bash) | MacOS (Shell)

JavaScript 539 84 Updated Sep 27, 2024

horsicq / Detect-It-Easy

Program for determining types of files for Windows, Linux and MacOS.

JavaScript 7,585 730 Updated Nov 10, 2024

eshlomo1 / Microsoft-Sentinel-SecOps

Microsoft Sentinel SOC Operations

PowerShell 240 63 Updated Jul 10, 2024

wwh1004 / ExtremeDumper

.NET Assembly Dumper

C# 840 193 Updated Feb 2, 2023

Velocidex / velociraptor

Digging Deeper....

Go 2,971 491 Updated Nov 11, 2024

nccgroup / DetectWindowsCopyOnWriteForAPI

Enumerate various traits from Windows processes as an aid to threat hunting

C++ 183 34 Updated Jan 13, 2022