🦆 Malduck is your ducky companion in malware analysis journeys

JA4+ is a suite of network fingerprinting standards

This repository contains sample programs that mimick behavior found in real-world malware. The goal is to provide source code that can be compiled and used for learning purposes, without having to …

practical toolkit for cybersecurity and IT professionals. It features a detailed Linux cheatsheet for incident response

A command line Windows API tracing tool for Golang binaries.

toolkit for python reverse engineering

Kaitai Struct: declarative language to generate binary data parsers in C++ / C# / Go / Java / JavaScript / Lua / Nim / Perl / PHP / Python / Ruby

Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, Th…

Windows APT Warfare, published by Packt

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors in the network traffic. Stratosphere Laboratory, AIC, FEL, CV…

Kaspersky's GReAT KLara

Research notes

My experiments in weaponizing Nim (https://nim-lang.org/)

Small and highly portable detection tests based on MITRE's ATT&CK.

Cloud Security Posture Management (CSPM)

🔒 A compiled checklist of 300+ tips for protecting digital security and privacy in 2024

Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security

A curated list of blogs, videos, tutorials, code, tools, scripts, and anything useful to help you learn Azure Policy - by @JesseLoudon

This repo has been replaced by https://www.cloudvulndb.org

Ansible script to bootstrap k8s cluster

Curiefense is a unified, open source platform protecting cloud native applications.

Learning Modern Linux book website

Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or ma…

Checklist for container security - devsecops practices

Hunt for security weaknesses in Kubernetes clusters

Convert Postman 2.1 Collections to Swagger 2.0 or OpenAPI 3.0

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.