Investigate malicious Windows logon by visualizing and analyzing Windows event log

MS17-010

Metis is a learnware platform in the field of AIOps.

ssh rdp vnc telnet sftp bastion/jump web putty xshell terminal jumpserver audit realtime monitor rz/sz 堡垒机 云桌面 linux devops sftp websocket file management rz/sz otp 自动化运维 审计 录像 文件管理 sftp上传 实时监控 录像回…

Penetration Testing Platform

Active Directory ACL exploitation with BloodHound

Various snippets created during malware analysis

Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which captures HTTP requests towards selectively chosen domains/IP…

This tool can forward TCP traffic over DNS protocol. Non-compile clients + socks5 support.

Dzscan

A web-based tool to assist the work of the intuitive threat analysts.

Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis

integration ms17010 and nsa-EternalBlue

基于非对称加密算法的Python源码保护

Public rules and samples for various automations through LimaCharlie.io

Modular and decentralised honeypot