chocolatecoat / DFIR-Templates

Windows.EDB Browser

Linux privilege escalation auditing tool

Monitor linux processes without root permissions

Chepy is a python lib/cli equivalent of the awesome CyberChef tool.

#夺旗赛 (CTF) 和网络安全资源#Gophish 是一个网络钓鱼工具，为企业和渗透测试人员而设计

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Digital Forensics Investigation Platform

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

Artifact collection tool for *nix systems

继承大量poc检查 包含oa 如 泛微 通达 致远 万户 等。

Exploit allowing you to read registry hives as non-admin on Windows 10 and 11

该仓库提供了精选的 Nuclei 模板。Nuclei 是一个基于YAML模板，自定义的漏洞扫描工具。

jd-gui 是一个 Java 反编译图像界面工具

A completely automated anomaly detector Zeek network flows files (conn.log).

linux-kernel-exploits Linux平台提权漏洞集合

Fast subdomains enumeration tool for penetration testers

Zeek Analysis Tools (ZAT): Processing and analysis of Zeek network data with Pandas, scikit-learn, Kafka and Spark

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

Fetch all the URLs that the Wayback Machine knows about for a domain