Alternatives and similar repositories for Threat-Analysis-Handbook

Users that are interested in Threat-Analysis-Handbook are comparing it to the libraries listed below

• al0ne / suricata-rules

  View on GitHub
  Suricata IDS rules 用来检测红队渗透/恶意行为等，支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等
  ☆1,266Jul 8, 2023Updated 2 years ago
• lengjibo / ATT-CK-CN

  View on GitHub
  ATT&CK实操
  ☆372Sep 7, 2019Updated 6 years ago
• dr0op / CrossNet-Beta

  View on GitHub
  红队行动中利用白利用、免杀、自动判断网络环境生成钓鱼可执行文件。
  ☆366Jun 19, 2024Updated last year
• tide-emergency / yingji

  View on GitHub
  应急相关内容积累
  ☆1,191Sep 14, 2024Updated last year
• uknowsec / SharpDecryptPwd

  View on GitHub
  对密码已保存在 Windwos 系统上的部分程序进行解析,包括：Navicat,TeamViewer,FileZilla,WinSCP,Xmangager系列产品（Xshell,Xftp)。源码：https://github.com/RowTeam/SharpDecrypt…
  ☆1,260Mar 16, 2022Updated 3 years ago
• DeEpinGh0st / Erebus

  View on GitHub
  CobaltStrike后渗透测试插件
  ☆1,554Oct 28, 2021Updated 4 years ago
• jweny / pocassist

  View on GitHub
  傻瓜式漏洞PoC测试框架
  ☆1,444Oct 30, 2023Updated 2 years ago
• grayddq / GScan

  View on GitHub
  本程序旨在为安全应急响应人员对Linux主机排查时提供便利，实现主机侧Checklist的自动全面化检测，根据检测结果自动数据聚合，进行黑客攻击路径溯源。
  ☆2,807Aug 7, 2022Updated 3 years ago
• r0eXpeR / fingerprint

  View on GitHub
  各种工具指纹收集分享
  ☆529Nov 3, 2021Updated 4 years ago
• QAX-A-Team / LuWu

  View on GitHub
  红队基础设施自动化部署工具
  ☆852Jan 4, 2023Updated 3 years ago
• theLSA / CS-checklist

  View on GitHub
  PC客户端（C-S架构）渗透测试checklist / Client side(C-S) penetration checklist
  ☆663Feb 24, 2021Updated 4 years ago
• lengjibo / RedTeamTools

  View on GitHub
  记录自己编写、修改的部分工具
  ☆1,462Oct 19, 2025Updated 3 months ago
• bitterzzZZ / MemoryShellLearn

  View on GitHub
  分享几个直接可用的内存马，记录一下学习过程中看过的文章
  ☆975Mar 23, 2022Updated 3 years ago
• threedr3am / JSP-WebShells

  View on GitHub
  Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
  ☆1,404Jan 18, 2022Updated 4 years ago
• LandGrey / webshell-detect-bypass

  View on GitHub
  绕过专业工具检测的Webshell研究文章和免杀的Webshell
  ☆1,732Nov 15, 2020Updated 5 years ago
• xiecat / goblin

  View on GitHub
  一款适用于红蓝对抗中的仿真钓鱼系统
  ☆1,535May 30, 2023Updated 2 years ago
• Maskhe / javasec

  View on GitHub
  自己学习java安全的一些总结，主要是安全审计相关
  ☆1,694Jan 5, 2022Updated 4 years ago
• Qianlitp / WatchAD

  View on GitHub
  AD Security Intrusion Detection System
  ☆1,321Mar 31, 2023Updated 2 years ago
• satan1a / RedBook

  View on GitHub
  基于Threathunting-book基础上完善的狩猎视角红队handbook
  ☆117Feb 15, 2024Updated 2 years ago
• safe6Sec / PentestDB

  View on GitHub
  各种数据库的利用姿势
  ☆1,034Jan 3, 2025Updated last year
• SummerSec / JavaLearnVulnerability

  View on GitHub
  Java漏洞学习笔记 Deserialization Vulnerability
  ☆945Jun 14, 2023Updated 2 years ago
• uknowsec / Active-Directory-Pentest-Notes

  View on GitHub
  个人域渗透学习笔记
  ☆1,800Feb 7, 2020Updated 6 years ago
• al0ne / Nmap_Bypass_IDS

  View on GitHub
  Nmap&Zmap特征识别，绕过IDS探测
  ☆329Aug 1, 2019Updated 6 years ago
• seccome / Ehoney

  View on GitHub
  安全、快捷、高交互、企业级的蜜罐管理系统，护网；支持多种协议蜜罐、蜜签、诱饵等功能。A safe, fast, highly interactive and enterprise level honeypot management system, supports mult…
  ☆1,273Oct 17, 2023Updated 2 years ago
• LoRexxar / Kunlun-M

  View on GitHub
  KunLun-M是一个完全开源的静态白盒扫描工具，支持PHP、JavaScript的语义扫描，基础安全、组件安全扫描，Chrome Ext\Solidity的基础扫描。
  ☆2,378Jan 16, 2026Updated last month
• chriskaliX / AD-Pentest-Notes

  View on GitHub
  用于记录内网渗透(域渗透)学习 :-)
  ☆1,235Nov 9, 2020Updated 5 years ago
• safe6Sec / Fastjson

  View on GitHub
  Fastjson姿势技巧集合
  ☆1,824Oct 20, 2023Updated 2 years ago
• c0ny1 / chunked-coding-converter

  View on GitHub
  Burp suite 分块传输辅助插件
  ☆2,021Feb 23, 2022Updated 3 years ago
• QAX-A-Team / sharpwmi

  View on GitHub
  sharpwmi是一个基于rpc的横向移动工具，具有上传文件和执行命令功能。
  ☆717Aug 3, 2021Updated 4 years ago
• 0x727 / FingerprintHub

  View on GitHub
  侦查守卫(ObserverWard)的指纹库
  ☆1,325Updated this week
• RoomaSec / RmEye

  View on GitHub
  戎码之眼是一个window上的基于att&ck模型的威胁监控工具.有效检测常见的未知威胁与已知威胁.防守方的利剑
  ☆536Oct 25, 2023Updated 2 years ago
• c0ny1 / java-memshell-scanner

  View on GitHub
  通过jsp脚本扫描java web Filter/Servlet型内存马
  ☆986Mar 9, 2023Updated 2 years ago
• threedr3am / ZhouYu

  View on GitHub
  （周瑜）Java - SpringBoot 持久化 WebShell（不仅仅是SpringBoot，适合任何符合JavaEE规范的服务）
  ☆615Dec 29, 2021Updated 4 years ago
• Mel0day / RedTeam-BCS

  View on GitHub
  BCS（北京网络安全大会）2019 红队行动会议重点内容
  ☆821Sep 4, 2019Updated 6 years ago
• wyzxxz / jndi_tool

  View on GitHub
  JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行 漏洞检测辅助工具
  ☆2,010May 21, 2024Updated last year
• al0ne / LinuxCheck

  View on GitHub
  Linux应急处置/信息搜集/漏洞检测工具，支持基础配置/网络流量/任务计划/环境变量/用户信息/Services/bash/恶意文件/内核Rootkit/SSH/Webshell/挖矿文件/挖矿进程/供应链/服务器风险等13类70+项检查
  ☆2,048Jun 19, 2024Updated last year
• r0eXpeR / redteam_vul

  View on GitHub
  红队作战中比较常遇到的一些重点系统漏洞整理。
  ☆2,521Jul 17, 2021Updated 4 years ago
• satan1a / TheRoadOfSO

  View on GitHub
  学习安全运营的记录 | The knowledge base of security operation
  ☆883Aug 27, 2023Updated 2 years ago
• FunnyWolf / pystinger

  View on GitHub
  Bypass firewall for traffic forwarding using webshell
  ☆1,432Sep 29, 2021Updated 4 years ago