Yamato-Security / WELA-deprecated

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Documentation and scripts to properly enable Windows event logs.

#十六进制编辑器#ImHex 是一个十六进制编辑器，用于逆向工程师解码、显示和分析二进制数据格式、提取信息或写入字节补丁的工具。

PoC to record audio from a Bluetooth device

HiddenVM — Use any desktop OS without leaving a trace.

Docker 中运行 Windows 操作系统

Perfect DLL Proxying using forwards with absolute paths.

This repo is about Active Directory Advanced Threat Hunting

Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.

Windows Local Privilege Escalation Cookbook

Provides automated reverse engineering assistance through the use of local large language models (LLMs) on consumer hardware.

CTF styled Digital Forensics labs, as offered in FAST NUCES Karachi during Spring 2023.

#大语言模型#ChatGPT 使用技巧

xz 漏洞（CVE-2024-3094）笔记、攻击demo

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Self-contained Hyper-V Active Directory Lab Environment

Expose local http, tcp or websocket connections to the public internet

The Network Execution Tool