#

mitigations

Here are 14 public repositories matching this topic...

0xricksanchez / paper_collection

Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read

linux iot embedded kernel paper linux-kernel fuzzing exploitation vulnerability-detection mitigations rca sanitizer directed-fuzzing hybrid-fuzzing fuzzing-binaries guided-fuzzing root-cause

Updated Mar 8, 2022

trailofbits / winchecksec

Open

Verify externally (catalog) signed binaries

woodruffw commented Feb 13, 2019

We currently use WinVerifyTrust to validate in-binary Authenticode signatures, but this doesn't work for externally signed binaries (i.e., those that come with a separate .cat file). Many core WIndows binaries are signed externally, so we should support this case.

Some initial research:

https://stackoverflow.com/questions/7241453/read-and-validate-certificate-from-executable

Read more

enhancement help wanted good first issue hacktoberfest

Open

Add a JSON key indicating whether we encountered a short load config

2

Open

GS edge case

2

Find more good first issues

Windows-Optimize-Harden-Debloat

simeononsecurity / Windows-Optimize-Harden-Debloat

Sponsor

Fully Optimize, Harden, and Debloat Windows 10 and Windows 11 Deployments to Windows Best Practices and DoD STIG/SRG Requirements. The ultimate Windows 10 & 11 security and privacy script!

Updated Mar 31, 2022
PowerShell

nsacyber / Mitigating-Obsolete-TLS

Guidance for mitigating obsolete Transport Layer Security configurations. #nsacyber

tls ssl guidance mitigations snort-rules

Updated Feb 3, 2021
PowerShell

immunant / selfrando

Function order shuffling to defend against ROP and other types of code reuse

linux diversity randomization security-hardening offensive defense mitigations aslr mitigation

Updated Dec 16, 2019
C++

Phenomite / AMP-Research

Research on UDP/TCP amplification vectors, payloads and mitigations against their use in DDoS Attacks

ddos tcp udp ddos-attacks dvr payloads mitigations amplification dns-amplification-attack cldap

Updated Mar 10, 2022
C

stfbk / tlsassistant

Fully-featured tool that combines state-of-the-art TLS analyzers with a report system that suggests appropriate mitigations and shows the full set of viable attacks.

tls hsts robot https crime rc4 certificate-transparency poodle attack-trees mitigations breach sloth drown sweet32 3shake bar-mitzvah lucky13

Updated Mar 11, 2022
Python

ZeroLP / External-Mitigations

PoC External Mitigations and Overviews against pixel search based scripts in League of Legends

hack script league-of-legends detection external poc cheat anticheat mitigations

Updated Sep 3, 2020
C#

simeononsecurity / SAPS

Sponsor

A collection of scripts to assist System Adminsitrators

security documentation automation powershell powershell-script mitigations

Updated May 24, 2021
PowerShell

HAFNIUM-Microsoft-Exchange-0day

SCS-Labs / HAFNIUM-Microsoft-Exchange-0day

CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, CVE-2021-27065

tweets timeline microsoft-exchange mitigations microsoft-exchange-server 0day zeroday detections proxylogon cve-2021-26855 cve-2021-27065 cve-2021-26857 cve-2021-26858 agency-security

Updated Apr 19, 2021

simeononsecurity / SolarWinds-SunBurst-SolarFlare-SolarMarker-Countermeasures

Sponsor

SolarWinds SunBurst Countermeasures

automation powershell directive applocker mitigations solarwinds applocker-rule

Updated Apr 6, 2021
PowerShell

AhmedMinegames / AntiHackingEngine

Advanced Anti-Exploitation Library made in C# and C++

exploitation interprocess-communication mitigations antihack anti-exploit interprocess-communication-library anti-hacking exploit-mitigations

Updated Mar 29, 2022
C#

JonathanRumley / CSC245-Secure-Software-Development

Focused on functionality when implementing security consequences with regard to formatted output and arithmetic operations in a program.

java vulnerabilities mitigations carnegie-mellon-university securityrequirements softwareengineeringinstitute securityreports

Updated Dec 7, 2021
Java

guijan / dictpw

A dictionary-based password generator with BSD license and practices.

c cli password-generator mitigations

Updated Mar 4, 2022
C

Improve this page

Add a description, image, and links to the mitigations topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the mitigations topic, visit your repo's landing page and select "manage topics."