BYOVD research use cases featuring vulnerable driver discovery and reverse engineering methodology. (CVE-2025-52915, CVE-2025-1055,).

A collection of resources for Threat Hunters

🧙‍♂️ Node.js Command & Control for Script-Jacking Vulnerable Electron Applications

Sysmon configuration file template with default high-quality event tracing

This project is aimed at freely providing technical guides on various hacking topics.

FakeNet-NG - Next Generation Dynamic Network Analysis Tool

PyInstaller Extractor

Memory dump and Sample analysis tool

Please no pull requests for this repository. Thanks!

This repository contains the custom Python analyzing scripting tool dubbed “Python_Evtx_Analyzer” (PeX), which caters for the analysis of voluminous Sysmon logs, and therefore contributes to the id…

christos

WeChatMsgDump 是一个用 Go 编写的动态获取微信数据库密钥并解密数据库文件的小工具，可用于客户端取证/微信聊天记录提取。