Osquery-Defense-Kit : Enhancing Cybersecurity
Osquery queries for Detection & Incident Response, containing 250+ production-ready queries.
ODK (osquery-defense-kit) is unique in that the queries are designed to be used as...
Coerced Potato Reflective DLL – Unveiling Privilege Escalation From NT Service To SYSTEM
Privilege escalation from NT Service to SYSTEM using SeImpersonateToken privilege and MS-RPRN functions.
Heavily based
Reflective Loader from
Install
Clone this repo and compile the project in VisualStudio...
InfoSec Black Friday Deals – “Friday Hack Fest” 2023 Edition
All the deals for InfoSec related software/tools this Black Friday / Cyber Monday.
Researcher was a little late getting started with my wife pushing out...
eBPF Tools: Revolutionizing System Monitoring with Advanced PTY Sniffing Techniques
This piece talks about eBPF tools and shows how they can be used to improve system monitoring by keeping track of PTY sessions and...
Dynmx Prototype: An Advanced API Call Trace Analysis Tool for Malware Detection
dynmx (spoken dynamics) is a signature-based detection approach for behavioural malware features based on Windows API call sequences. In a simplified way, you can think of dynmx as...
Karton-Pcap-Miner: Streamlining Network Indicator Extraction from PCAPs
Karton-Pcap-Miner is a strong program that quickly pulls network indicators from analysis PCAP files." It works with MWDB without any problems to add these...
Crawlector – Empowering Threat-Hunting With Advanced Web Scanning And Detection
Crawlector (the name Crawlector is a combination of Crawler & Detector) is a threat-hunting framework designed for scanning websites for malicious objects.
Note-1: The framework was first presented...
31 Tips from Inon Shkedy’s Challenge – Mastering API Security
This challenge is Inon Shkedy's 31 days API Security Tips
-API TIP: 1/31-
Older APIs versions tend to be more vulnerable and they lack security mechanisms....
InfoSec Black Friday Deals – “Friday Hack Fest” 2023 Edition
All the deals for InfoSec related software/tools this Black Friday / Cyber Monday.
Just 2023 Things
Quality over quantity - this list goes through a level...
Hades Command And Control – Learning Malware Development and CTFsHades Command & Control
Hades is a basic Command & Control server built using Python. It is currently extremely bare bones, but I plan to add more features...