Owlyshield
FunctionStomping
Our great sponsors
| Owlyshield | FunctionStomping | |
|---|---|---|
| 24 | 7 | |
| 369 | 669 | |
| 3.5% | - | |
| 6.5 | 2.5 | |
| 11 months ago | 7 months ago | |
| Rust | Rust | |
| European Union Public License 1.2 | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Owlyshield
- Owlyshield - an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact)
-
What AVs do you use?
2.Owlyshield (Fairly new AI AV) + Portmaster (Firewall) = Profit. All are open-source. For those people saying common sense is enough. No it's not, when someone is intentionally attacking you.
-
[P] Ransomware detection using ML. We need your suggestions to create a better model!
We focus solely on the activity of programs (or families of programs) in terms of disk activities (read and write). Behaviours are collected by Owlyshield, our open-source anti-malware engine we created and maintain. Owlyshield is a dynamic project and the quantity of metrics we collect is increasing rapidly.
-
Do you guys know any FOSS AV?
Owlyshield lots very interest, but is windows only at the moment.
-
FOSS AI based antivirus trained against ransomwares
Please report here any false positive, undetected malware or bug so that we can continuously improve the model.
- Anyone willing to challenge our AI based FOSS antivirus?
- Socle interministériel de logiciels libres - Le SILL est le catalogue de référence des logiciels libres recommandés par l'Etat
-
Anyone willing to test our AI based FOSS antivirus?
Because we think that cyber security should not be the lucrative business of a happy few but the concern of all, we have disclosed the complete source code of our AI based antivirus Owlyshield and made it available for free.
- 2 Component PCA on Ransomwares/Goodwares behavioural data
- Owlyshield - AI-driven Antivirus Engine written in Rust
FunctionStomping
- FunctionStomping: A new shellcode injection technique. Given as C++ header or standalone Rust program
- FunctionStomping – A new shellcode injection technique
- FunctionStomping: A new shellcode injection technique. Given as C++ header or standalone Rust program on Windows - a brand-new technique for shellcode injection to evade AVs and EDRs. Technique is inspired by Module Stomping and has some similarities. Hollows-hunter doesn't find it..
- A new shellcode injection methodology
What are some alternatives?
cherrybomb - Stop half-done APIs! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by auditing your API specifications, validating them and running API security tests.
MrKaplan - MrKaplan is a tool aimed to help red teamers to stay hidden by clearing evidence of execution.
L2 - l2 is a fast, Pytorch-style Tensor+Autograd library written in Rust
hayabusa - Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
cleora - Cleora AI is a general-purpose model for efficient, scalable learning of stable and inductive entity embeddings for heterogeneous relational data.
Hacking-Windows - A FREE Windows C development course where we will learn the Win32API and reverse engineer each step utilizing IDA Free in both an x86 and x64 environment.
siena - A data provider agnostic ORM.
x64dbg - An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.
rust-keylogger
catherine - The Catherine Framework is a general-purpose cybersecurity framework built to provide extended support for defense operations.
onelinepy - Python Obfuscator to generate One-Liners and FUD Payloads.
Windows UI Library - Windows UI Library: the latest Windows 10 native controls and Fluent styles for your applications