Skip to content

@airbus-cert Airbus CERT

Change the repository type filter

All

    Repositories list

    44 repositories

    • tree-sitter-powershell

      Public
      Powershell grammar for tree-sitter
      JavaScript
      MIT License
      104131Updated Dec 20, 2024Dec 20, 2024

    • scrings

      Public
      Semantic strings based on tree-sitter
      Rust
      MIT License
      01100Updated Dec 16, 2024Dec 16, 2024

    • tree-sitter-traversal

      Public
      Traversal of tree-sitter Trees and any arbitrary tree with a TreeCursor-like interface
      Rust
      MIT License
      6000Updated Dec 12, 2024Dec 12, 2024

    • minusone

      Public
      Powershell Linter
      Rust
      MIT License
      14800Updated Nov 29, 2024Nov 29, 2024

    • regrippy

      Public
      A modern Python-3-based alternative to RegRipper
      pythonwindowsregistryforensicsdfir
      Python
      Apache License 2.0
      1718820Updated Nov 28, 2024Nov 28, 2024

    • usnrs

      Public
      USN Journal parsing software and library
      Rust
      Apache License 2.0
      0720Updated Oct 14, 2024Oct 14, 2024

    • Yagi

      Public
      Yet Another Ghidra Integration for IDA
      ida-plugindecompilerreverse-engineeringdisassemblerghidra
      C++
      Apache License 2.0
      4149291Updated Aug 20, 2024Aug 20, 2024

    • vbSparkle

      Public
      VBScript & VBA source-to-source deobfuscator with partial-evaluation
      C#
      Apache License 2.0
      107410Updated Aug 7, 2024Aug 7, 2024

    • skyblue.team

      Public
      Our website
      HTML
      0100Updated Aug 6, 2024Aug 6, 2024

    • nix-forensics

      Public
      Reproducible forensics environment, 100% of the time
      nixforensics
      Nix
      3600Updated Aug 5, 2024Aug 5, 2024

    • timeliner

      Public
      A rewrite of mactime, a bodyfile reader
      forensicsdfirmactimebodyfile
      Go
      Apache License 2.0
      63700Updated Aug 5, 2024Aug 5, 2024

    • bodyfile

      Public
      A bodyfile parsing library
      golangforensicsdfirmactimebodyfile
      Go
      Apache License 2.0
      2300Updated Aug 5, 2024Aug 5, 2024

    • ttddbg

      Public
      Time Travel Debugging IDA plugin
      debuggingreverse-engineeringida
      C++
      Apache License 2.0
      3655551Updated Jun 27, 2024Jun 27, 2024

    • CVE-2024-4040

      Public
      Scanner for CVE-2024-4040
      Python
      84700Updated May 17, 2024May 17, 2024

    • tree-sitter

      Public
      An incremental parsing system for programming tools
      Rust
      MIT License
      1.5k200Updated Oct 5, 2023Oct 5, 2023

    • ttd2mdmp

      Public
      Extract data of TTD trace file to a minidump
      C++
      Apache License 2.0
      12820Updated Jul 31, 2023Jul 31, 2023

    • comida

      Public
      An IDA Plugin that help analyzing module that use COM
      Python
      Apache License 2.0
      2419920Updated Jul 27, 2023Jul 27, 2023

    • yara-ttd

      Public
      Use YARA rules on Time Travel Debugging traces
      C
      Apache License 2.0
      138731Updated Jul 11, 2023Jul 11, 2023

    • dnYara

      Public
      A multi-platform .Net wrapper library for the native Yara library.
      C#
      Apache License 2.0
      113851Updated Jun 30, 2023Jun 30, 2023

    • SysmonForLinux

      Public
      C
      MIT License
      189000Updated Jun 27, 2023Jun 27, 2023

    • SysmonCommon

      Public
      The common parts of the Sysinternals Sysmon tool shared between the Windows and Linux versions.
      C++
      MIT License
      21000Updated Jun 27, 2023Jun 27, 2023

    • ttd-bindings

      Public
      Bindings for Microsoft WinDBG TTD
      C++
      31100Updated Mar 29, 2023Mar 29, 2023

    • MISP

      Public
      MISP (core software) - Open Source Threat Intelligence Platform (formely known as Malware Information Sharing Platform)
      PHP
      GNU Affero General Public License v3.0
      1.4k400Updated Oct 14, 2022Oct 14, 2022

    • etwbreaker

      Public
      An IDA plugin to deal with Event Tracing for Windows (ETW)
      idaetw
      Python
      Apache License 2.0
      165000Updated Jul 8, 2022Jul 8, 2022

    • dirtypipe-ebpf_detection

      Public
      An eBPF detection program for CVE-2022-0847
      C
      Apache License 2.0
      32800Updated Jul 5, 2022Jul 5, 2022

    • awesome-ida-x64-olly-plugin

      Public
      A curated list of IDA x64DBG, Ghidra and OllyDBG plugins.
      152100Updated Jun 10, 2022Jun 10, 2022

    • dnMisp

      Public
      dnMisp is a simple, MISP Rest API consumer .Net Standard 2.0 library.
      C#
      Apache License 2.0
      0000Updated May 25, 2022May 25, 2022

    • ntTraceControl

      Public
      Powershell Event Tracing Toolbox
      securitypowershellthreat-hunting
      PowerShell
      Apache License 2.0
      97300Updated Mar 21, 2022Mar 21, 2022

    • Winshark

      Public
      A wireshark plugin to instrument ETW
      pcapwiresharketw
      Lua
      Apache License 2.0
      5953840Updated Jan 28, 2022Jan 28, 2022

    • libpcap

      Public
      the LIBpcap interface to various kernel packet capture mechanism
      C
      Other
      861000Updated Jan 27, 2022Jan 27, 2022