Rvn0xsy

Rvn0xsy / sec-skills

Public

Security research skills repository

14
0
69% credibility
Found Apr 08, 2026 at 14 stars -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
Python
AI Summary

A set of tools for generating disguised command variants, webshells, shellcode, and installers to test and improve security detection rules in defensive research.

How It Works

1
🔍 Discover the security test kit

You hear about a handy toolbox from security friends that helps create sneaky test examples to check if your defenses spot hidden threats.

2
📦 Get the toolbox ready

You download the simple files to your computer and prepare them for easy use.

3
Pick your test type
💻
Computer commands

Test disguises for regular system checks on Windows or Linux.

🌐
Web page tricks

Create hidden web commands to see if site protectors notice.

📱
App bundles

Make test installers that look innocent to fool package scanners.

4
Create disguise variants

Type in a simple command you want to hide, and the tool instantly generates many clever disguised versions for testing.

5
🧪 Run the tests

Try your disguised examples against your security setup to see which ones slip through.

6
📊 Review what worked

Spot the weaknesses and learn how to strengthen your detection rules.

Stronger defenses

Your security is now better at catching even the sneakiest threats, keeping everything safe.

Sign up to see the full architecture

5 more

Sign Up Free

Star Growth

See how this repo grew from 14 to 14 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is sec-skills?

sec-skills is a Python collection of CLI tools that generate obfuscated command samples for testing security detection in EDRs, WAFs, and scanners. Security researchers feed it plain commands—like "netstat -ano" or PHP webshells—and it spits out JSON arrays of variants using base64, hex, concatenation, env vars, and more across cmd.exe, PowerShell, Bash, webshells (PHP/JSP/ASP.NET), .NET shellcode, and MSI installers. It's built for defensive security research, red/blue team drills, and crafting github security advisories or detection rules.

Why is it gaining traction?

It bundles multi-platform obfuscators inspired by real-world tools into simple Python CLIs with built-in detection pattern scanners, saving time over manual scripting or scattered security github projects. The bilingual README packs quick examples and disclaimers, plus outputs ready for security github actions or research blogs—no setup hassles. Low barrier for testing github security scanning or sec skills in controlled environments.

Who should use this?

Detection engineers tuning Sigma/YARA rules for EDR evasion. Red teamers generating samples for purple team exercises. SecOps validating github security policy alerts or security github copilot outputs. Ideal for security research device testing, like iPhone research device mode, without building from scratch.

Verdict

Grab it if you need fast, defensive sample generation for sec skills training—CLI usage is dead simple with solid README examples. At 14 stars and 0.7% credibility score, it's early-stage with room for more tests and adoption, but reliable for niche security github repository experiments.

(198 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.