0x783kb / Security-Operation-Book

常见的攻击行为监测特征及方法，涵盖端点和流量，未包含PowerShell和Sysmon。预祝运营生活愉快！

☆617

Alternatives and similar repositories for Security-Operation-Book:

Users that are interested in Security-Operation-Book are comparing it to the libraries listed below

lengjibo / ATT-CK-CN
ATT&CK实操
☆367Updated 5 years ago
Mel0day / RedTeam-BCS
BCS（北京网络安全大会）2019 红队行动会议重点内容
☆815Updated 5 years ago
EXP-Tools / threat-broadcast
威胁情报播报
☆380Updated this week
RoomaSec / RmEye
戎码之眼是一个window上的基于att&ck模型的威胁监控工具.有效检测常见的未知威胁与已知威胁.防守方的利剑
☆497Updated last year
chroblert / WindowsVulnScan
☆401Updated last year
Rvn0xsy / Cooolis-ms
Cooolis-ms是一个包含了Metasploit Payload Loader、Cobalt Strike External C2 Loader、Reflective DLL injection的代码执行工具，它的定位在于能够在静态查杀上规避一些我们将要执行且含有特征的…
☆912Updated 6 months ago
chriskaliX / AD-Pentest-Notes
用于记录内网渗透(域渗透)学习 :-)
☆1,125Updated 4 years ago
s7ckTeam / Glass
Glass是一款针对资产列表的快速指纹识别工具，通过调用Fofa/ZoomEye/Shodan/360等api接口快速查询资产信息并识别重点资产的指纹，也可针对IP/IP段或资产列表进行快速的指纹识别。
☆988Updated 3 years ago
xuanhusec / OscpStudyGroup
Oscp study group
☆337Updated 3 years ago
lintstar / LSTAR
LSTAR - CobaltStrike 综合后渗透插件
☆1,187Updated 3 years ago
FunnyWolf / pystinger
Bypass firewall for traffic forwarding using webshell 一款使用webshell进行流量转发的出网工具
☆1,389Updated 3 years ago
daikerSec / windows_protocol
☆453Updated last year
threedr3am / JSP-WebShells
Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势
☆1,369Updated 3 years ago
YinWC / 2021hvv_vul
2021hvv漏洞汇总
☆668Updated 3 years ago
Al1ex / Red-Team
Red-Team Attack Guid
☆260Updated 4 years ago
MountCloud / FireKylin
🔥火麒麟-网络安全应急响应工具(系统痕迹采集)Cybersecurity emergency response tool.👍👍👍
☆782Updated 3 years ago
CTF-MissFeng / GoScan
GoScan是采用Golang语言编写的一款分布式综合资产管理系统，适合红队、SRC等使用
☆705Updated 3 years ago
P1-Team / AlliN
A flexible scanner
☆1,226Updated 2 months ago
hudunkey / Red-Team-links
2019年红队资源链接，资源不是本人整理出来，来自互联网，因为流传的少，特意在此做个备份，做个分享。
☆841Updated 5 years ago
yzddmr6 / As-Exploits
中国蚁剑后渗透框架
☆914Updated last year
al0ne / suricata-rules
Suricata IDS rules 用来检测红队渗透/恶意行为等，支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等
☆1,169Updated last year
QAX-A-Team / LuWu
红队基础设施自动化部署工具
☆841Updated 2 years ago
Rvn0xsy / BadCode
恶意代码逃逸源代码 http://payloads.online
☆745Updated 2 years ago
DeEpinGh0st / Erebus
CobaltStrike后渗透测试插件
☆1,509Updated 3 years ago
Snowming04 / CobaltStrike4.0_related
破解的cs4.0、cs4.0官方手册翻译和一些笔记
☆399Updated 4 years ago
cnrstar / anti-honeypot
一款可以检测WEB蜜罐并阻断请求的Chrome插件
☆836Updated 6 months ago
Gality369 / CS-Loader
CS免杀, KObfuscate is an obfuscator based on LLVM-17, utilizing LLVM's new pass to implement plug-in features, for obfuscating multiple lan…
☆818Updated last month
huoji120 / DuckMemoryScan
检测绝大部分所谓的内存免杀马
☆716Updated 2 years ago
yhy0 / github-cve-monitor
实时监控github上新增的cve、自定义关键字、安全工具更新、大佬仓库监控，并多渠道推送通知
☆1,154Updated 2 years ago
c0ny1 / java-memshell-scanner
通过jsp脚本扫描java web Filter/Servlet型内存马
☆860Updated last year