Skip to content
View modulexcite's full-sized avatar
🎯
Focusing
🎯
Focusing
244 followers · 1.7k following

Achievements

Achievement: Pull Shark

Achievements

Achievement: Pull Shark

Highlights

Block or report modulexcite

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Stars

BluePurpleTeam

198 repositories

vulhub / vulhub

Pre-Built Vulnerable Environments Based on Docker-Compose

Dockerfile 18,335 4,539 Updated Feb 24, 2025

Medicean / VulApps

快速搭建各种漏洞环境(Various vulnerability environment)

Shell 3,730 997 Updated Oct 27, 2020

hasherezade / hollows_hunter

Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).

C 2,110 266 Updated Feb 22, 2025

hasherezade / pe-sieve

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

C++ 3,234 442 Updated Feb 27, 2025

hasherezade / malware_training_vol1

Materials for Windows Malware Analysis training (volume 1)

Assembly 1,965 191 Updated Jul 1, 2024

hasherezade / libpeconv

A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl

C++ 1,169 186 Updated Feb 21, 2025

sbousseaden / EVTX-ATTACK-SAMPLES

Windows Events Attack Samples

HTML 2,311 409 Updated Jan 24, 2023

omerbenamram / evtx

A Fast (and safe) parser for the Windows XML Event Log (EVTX) format

Rust 721 67 Updated Feb 21, 2025

SigmaHQ / sigma

Main Sigma Rule Repository

Python 8,753 2,275 Updated Feb 28, 2025

wagga40 / Zircolite

A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs

Python 703 95 Updated Feb 4, 2025

StrangerealIntel / DailyIOC

IOC from articles, tweets for archives

YARA 313 44 Updated Dec 12, 2023

StrangerealIntel / CyberThreatIntel

Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups

JavaScript 707 136 Updated Dec 26, 2022

airbnb / streamalert

StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using datasources and alerting logic you define.

Python 2,861 334 Updated Oct 23, 2023

meirwah / awesome-incident-response

A curated list of tools for incident response

7,943 1,559 Updated Jul 18, 2024

monzo / response

Monzo's real-time incident response and reporting tool ⚡️

JavaScript 1,536 167 Updated Mar 20, 2024

certsocietegenerale / FIR

Fast Incident Response

JavaScript 1,791 507 Updated Feb 19, 2025

snovvcrash / usbrip

Tracking history of USB events on GNU/Linux

Python 1,162 112 Updated Oct 3, 2022

dfir-iris / iris-web

Collaborative Incident Response platform

Python 1,142 206 Updated Feb 28, 2025

facebook / ThreatExchange

Trust & Safety tools for working together to fight digital harms.

C++ 1,200 324 Updated Feb 24, 2025

cve-search / cve-search

cve-search - a tool to perform local searches for known vulnerabilities

Python 2,387 601 Updated Feb 11, 2025

ail-project / ail-framework

AIL framework - Analysis Information Leak framework

Python 694 95 Updated Feb 28, 2025

CIRCL / AIL-framework

AIL framework - Analysis Information Leak framework. Project moved to https://github.com/ail-project

Python 1,315 282 Updated Feb 28, 2025

redcanaryco / atomic-red-team

Small and highly portable detection tests based on MITRE's ATT&CK.

C 10,225 2,865 Updated Feb 25, 2025

redcanaryco / invoke-atomicredteam

Invoke-AtomicRedTeam is a PowerShell module to execute tests as defined in the [atomics folder](https://github.com/redcanaryco/atomic-red-team/tree/master/atomics) of Red Canary's Atomic Red Team p…

PowerShell 882 205 Updated Feb 25, 2025

redcanaryco / AtomicTestHarnesses

Public Repo for Atomic Test Harness

PowerShell 262 43 Updated Jul 4, 2024

redcanaryco / chain-reactor

Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.

C 300 32 Updated Nov 6, 2024

center-for-threat-informed-defense / adversary_emulation_library

An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

C 1,819 320 Updated Jan 5, 2024

firehol / blocklist-ipsets

ipsets dynamically updated with firehol's update-ipsets.sh script

Shell 3,321 395 Updated Feb 28, 2025

Apr4h / CobaltStrikeScan

Scan files or process memory for CobaltStrike beacons and parse their configuration

C# 907 118 Updated Aug 19, 2021

BushidoUK / Open-source-tools-for-CTI

Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

643 105 Updated Oct 28, 2024