nsync is a C library that exports various synchronization primitives, such as mutexes

Interesting APT Report Collection And Some Special IOC

Pure rust windows prefetch parser implementation

Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts from various disk and file formats, developed by Fox-IT (pa…

Dump lsass using only Native APIs by hand-crafting Minidump files (without MinidumpWriteDump!!!)

The open source Tines / Splunk SOAR alternative.

Go mascot image constructor. Create your cute own gopher.

// Aesthetic, dynamic and minimal dots for Arch hyprland

CLI tools for forensic investigation of Windows artifacts

Forensic framework to build tools that can be reused in multiple projects without changing anything

A Rust wrapper for the MinHook library

A modern replacement for Redis and Memcached

Scripts to build a trimmed-down Windows 11 image.

Statically link the vcruntime

Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST

Efficient Deobfuscation of Linear Mixed Boolean-Arithmetic Expressions

Cloud-native search engine for observability. An open-source alternative to Datadog, Elasticsearch, Loki, and Tempo.

Code examples, data structures, and links from my book, Rust Atomics and Locks.

Collection of Cyber Threat Intelligence sources from the deep and dark web

Stop Windows Defender programmatically

Dynamically create a custom Windows based laboratory or clone a real Windows Network

Framework definitions that allow to build a custom SIEM.

Windows services in Rust

Detect Tactics, Techniques & Combat Threats

Detect possible sysmon logging bypasses given a specific configuration

A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk

A knowledge base of actionable Incident Response techniques