Alternatives and similar repositories for rdphoney:

Users that are interested in rdphoney are comparing it to the libraries listed below

• jipegit / IncidentsMindMaps
  Cybersecurity Incidents Mind Maps
  ☆33Updated 3 years ago
• v1ado / HIPS_LIPS
  Community maintained list of most popular HIPS service and process names on a Windows Platform.
  ☆43Updated 2 years ago
• faisalusuf / ThreatIntelligence
  Tracking APT IOCs
  ☆25Updated 4 years ago
• 1d8 / macros
  ☆50Updated 4 years ago
• ohjeongwook / PowerShellRunBox
  Dynamic PowerShell Analysis Framework Based Upon PowerShell Debugging Functionality
  ☆83Updated 2 years ago
• nao-sec / tknk_scanner
  Community-based integrated malware identification system
  ☆82Updated 2 years ago
• intelforge / tmc
  Threat Mapping Catalogue
  ☆17Updated 3 years ago
• ail-project / ail-yara-rules
  A set of YARA rules for the AIL framework to detect leak or information disclosure
  ☆38Updated 2 months ago
• fatihsirin / Tweettioc-Splunk-App
  Tweettioc Splunk App
  ☆20Updated 4 years ago
• Dankirk / RegSLScan
  A tool for scanning registery key permissions. Find where non-admins can create symbolic links.
  ☆46Updated 5 years ago
• dmaasland / mcfridafee
  ☆52Updated 5 years ago
• kmindi / log4shell-vulnerable-app
  Spring Boot web application vulnerable to CVE-2021-44228, nicknamed Log4Shell.
  ☆13Updated 3 years ago
• mitre-attack / joystick
  Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…
  ☆64Updated last year
• imjdl / CVE-2019-11510-poc
  Pulse Secure SSL VPN pre-auth file reading
  ☆50Updated 5 years ago
• claroty / CVE2020-0796
  CVE2020-0796 SMBv3 RCE
  ☆61Updated 5 years ago
• umarfarook882 / Windows-InstallerBypass
  Windows Installer Bypass using Rollback Script .rbs and .rbf - Race Condition
  ☆22Updated 5 years ago
• 3xpl01tc0d3r / Building-ActiveDirectory-Lab
  Building ActiveDirectory Lab for practicing various attack vectors used during Red Team engagement.
  ☆36Updated 5 years ago
• SecureDataLabs / BlackHat-EU-2018
  Black Hat EU 2018 - Don't Eat Spaghetti with a Spoon - An Analysis of the Practical Value of Threat Intelligence
  ☆22Updated 6 years ago
• PCsXcetra / DerbyCon-2019Files
  This is a group of tools that I was planning on releasing During Derbycon 2019 talk if it was accepted or with a blogpost if not.
  ☆43Updated 3 years ago
• bro / bro-osquery
  Bro integration with osquery
  ☆15Updated 2 years ago
• RomanEmelyanov / CobaltStrikeForensic
  Toolset for research malware and Cobalt Strike beacons
  ☆209Updated 2 weeks ago
• nccgroup / Royal_APT
  Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research
  ☆53Updated 7 years ago
• lawiet47 / autoresponder
  Carbon Black Response IR tool
  ☆53Updated 4 years ago
• daniel-infosec / wikipedia-c2
  POC for utilizing wikipedia API for Command and Control
  ☆29Updated 2 years ago
• DfirJos / CnC-detection
  Detecting PowerShell Empire, Metasploit Meterpreter and Cobalt Strike agents by payload size sequence analysis and host correlation
  ☆16Updated 6 years ago
• JPCERTCC / QuasarRAT-Analysis
  QuasarRAT analysis tools and research report
  ☆27Updated last year
• Lifars / gargamel
  A forensic evidence acquirer
  ☆86Updated 3 years ago
• T13nn3s / CVE-2020-0796
  Powershell SMBv3 Compression checker
  ☆28Updated last year
• kryptoslogic / rdppot
  RDP honeypot
  ☆65Updated 5 years ago
• ninoseki / ukemi
  A CLI tool for querying passive DNS services
  ☆41Updated last year