BushidoUK / Abused-Legitimate-ServicesLinks
Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
☆60Updated 2 years ago
Alternatives and similar repositories for Abused-Legitimate-Services
Users that are interested in Abused-Legitimate-Services are comparing it to the libraries listed below
Sorting:
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 3 years ago
- Bloodhound Portable for Windows☆51Updated 2 years ago
- Simple PowerShell script to enable process scanning with Yara.☆93Updated 2 years ago
- Placeholder for my detection repo and misc detection engineering content☆43Updated last year
- ShellSweeping the evil.☆52Updated 11 months ago
- Triaging Windows event logs based on SANS Poster☆39Updated 2 years ago
- Get intelligence info (tags, mitre techniques, yara and more) and find similar malware in a fast and easy way☆18Updated 2 years ago
- ☆42Updated last year
- ☆27Updated 4 years ago
- A home for detection content developed by the delivr.to team☆69Updated 3 months ago
- This repo is where I store my Threat Hunting ideas/content☆87Updated 2 years ago
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆52Updated last year
- Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop☆68Updated 2 weeks ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.☆66Updated 3 years ago
- Carbon Black Response IR tool☆53Updated 4 years ago
- A visualized overview of the Initial Access Broker (IAB) cybercrime landscape☆114Updated 3 years ago
- Kerberoast Detection Script☆30Updated 7 months ago
- ☆38Updated 3 years ago
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆69Updated 3 years ago
- An Ansible role for installing Cobalt Strike.☆78Updated 3 weeks ago
- SMBMap is a handy SMB enumeration tool - here with Kerberos support☆73Updated 3 years ago
- Yara Rules for Modern Malware☆77Updated last year
- ☆40Updated 2 years ago
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated 2 years ago
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆93Updated last year
- Threat Hunt Investigation Methodology and Procedure☆15Updated 2 years ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆52Updated 5 months ago
- Actively hunt for attacker infrastructure by filtering Shodan results with URLScan data.☆61Updated 10 months ago