Alternatives and similar repositories for sunburst_dga:

Users that are interested in sunburst_dga are comparing it to the libraries listed below

• mgeeky / LISET
  Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…
  ☆28Updated 8 years ago
• aaronst / talks
  Presentation materials for talks I've given.
  ☆20Updated 5 years ago
• mubix / lmo
  LetMeOutOfYour.net Resources
  ☆20Updated 4 years ago
• automate-tim / conference-materials
  Speaking materials from conferences I've given
  ☆9Updated 2 years ago
• ahhh / presentations
  various slides and presentations I've worked on
  ☆18Updated last year
• PwnDexter / FindFrontableDomains
  Forked and updated with some additional features over the original
  ☆16Updated 3 years ago
• nettitude / PoshC2_IOCs
  A list of IOCs applicable to PoshC2
  ☆24Updated 4 years ago
• ninoseki / rogue_one
  A rogue DNS detector
  ☆23Updated last year
• blacklotuslabs / Research
  The mission of Black Lotus Labs is to leverage our network visibility to both help protect customers and keep the internet clean.
  ☆12Updated 3 years ago
• StrangerealIntel / DeltaFlare
  ☆12Updated 3 years ago
• SentineLabs / TrickBot-Anchor
  This is a repository for the public blog with Labs indicators of compromise.
  ☆10Updated 5 years ago
• rvrsh3ll / CanaryServer
  Fake SMB and SAMR data
  ☆11Updated 5 years ago
• LaresLLC / AzureTokenExtractor
  Extracts Azure authentication tokens from PowerShell process minidumps.
  ☆23Updated last year
• r4wd3r / ADPWN
  Useful Windows and AD tools
  ☆15Updated 3 years ago
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆15Updated 4 years ago
• k-vitali / operation-shadowhammer
  This repository contains various files linked to Operation Shadowhammer as it was originally discovered by Kaspersky Team.
  ☆12Updated 5 years ago
• sourcefrenchy / goqrexfil
  A mini project to exfiltrate data via QR codes
  ☆19Updated last week
• caschnee / misp-use-cases
  ☆14Updated 6 years ago
• HuskyHacks / RustyTokenManipulation
  just manipulatin these here tokens yes sir nothing weird
  ☆22Updated 2 years ago
• Hestat / intel-sharing
  Repository of Information sharing on threats and indicators
  ☆12Updated 5 years ago
• ninoseki / iocingestor
  An extendable tool to extract and aggregate IoCs from threat feeds
  ☆33Updated last year
• IceMoonHSV / Sim
  C# User Simulation
  ☆32Updated 2 years ago
• ruppde / yara_rules
  Yara rules
  ☆21Updated last year
• honeydbio / honeydb-python
  HoneyDB Python Module
  ☆13Updated last year
• sourcefrenchy / certexfil
  Exfiltration based on custom X509 certificates
  ☆26Updated last year
• proferosec / Threat-Intelligence
  A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.
  ☆10Updated 5 years ago
• snemes / malware-analysis
  ☆23Updated 4 years ago
• silascutler / DetuxNG
  The Multiplatform Linux Sandbox
  ☆15Updated last year
• Stealthbits / RIDHijackingProofofConceptKJ
  RID Hijacking Proof of Concept script by Kevin Joyce
  ☆15Updated 6 years ago
• WMSR / utils
  ☆10Updated 4 years ago