Alternatives and similar repositories for rdphoney

Users that are interested in rdphoney are comparing it to the libraries listed below

• claroty / CVE2020-0796
  CVE2020-0796 SMBv3 RCE
  ☆61Updated 5 years ago
• ohjeongwook / PowerShellRunBox
  Dynamic PowerShell Analysis Framework Based Upon PowerShell Debugging Functionality
  ☆83Updated 2 years ago
• 1d8 / macros
  ☆50Updated 5 years ago
• v1ado / HIPS_LIPS
  Community maintained list of most popular HIPS service and process names on a Windows Platform.
  ☆43Updated 3 years ago
• PCsXcetra / DerbyCon-2019Files
  This is a group of tools that I was planning on releasing During Derbycon 2019 talk if it was accepted or with a blogpost if not.
  ☆43Updated 4 years ago
• rapid7 / rex-powershell
  Rex library for dealing with Powershell Scripts
  ☆53Updated 2 months ago
• threatexpress / persistence-aggressor-script
  initial commit
  ☆44Updated 8 months ago
• kryptoslogic / rdppot
  RDP honeypot
  ☆67Updated 6 years ago
• praetorian-inc / slack-c2bot
  Slack C2bot that executes commands and returns the output.
  ☆46Updated 2 years ago
• benyG / RProcDump
  Remote process dumping automation. Use it to dump Windows credentials remotely and extract clear text with Mimikatz offline
  ☆35Updated 5 years ago
• Dankirk / RegSLScan
  A tool for scanning registery key permissions. Find where non-admins can create symbolic links.
  ☆46Updated 5 years ago
• T13nn3s / CVE-2020-0796
  Powershell SMBv3 Compression checker
  ☆28Updated 2 years ago
• faisalusuf / ThreatIntelligence
  Tracking APT IOCs
  ☆25Updated 4 years ago
• GoSecure / DLLPasswordFilterImplant
  DLL Password Filter Implant with Exfiltration Capabilities
  ☆138Updated 5 years ago
• HynekPetrak / detect_bluekeep.py
  Python script to detect bluekeep vulnerability (CVE-2019-0708) with TLS/SSL and x509 support
  ☆27Updated 6 years ago
• nao-sec / tknk_scanner
  Community-based integrated malware identification system
  ☆82Updated 2 years ago
• djhohnstein / wlbsctrl_poc
  C++ POC code for the wlbsctrl.dll hijack on IKEEXT
  ☆53Updated 6 years ago
• lanmaster53 / ptscripts
  ☆44Updated 9 years ago
• MinervaLabsResearch / CoffeeShot
  CoffeeShot: Avoid Detection with Memory Injection
  ☆74Updated 6 years ago
• vysecurity / CobaltSplunk
  Splunk Dashboard for CobaltStrike logs
  ☆89Updated 4 years ago
• daniel-infosec / wikipedia-c2
  POC for utilizing wikipedia API for Command and Control
  ☆29Updated 2 years ago
• rasta-mouse / CollectorService
  ☆54Updated 6 years ago
• breenmachine / HPwn
  HP printer security research code
  ☆53Updated 7 years ago
• JPCERTCC / QuasarRAT-Analysis
  QuasarRAT analysis tools and research report
  ☆27Updated last year
• StrangerealIntel / Cerberus
  Sources code extracted from malwares for analysis
  ☆38Updated 2 years ago
• eik00d / Reverse_DNS_Shellcode
  Revrese DNS payload for Metasploit: Download Exec x86 shellcode. Also DNS Handler and VBS bot (alsow working over DNS) as PoC included.
  ☆41Updated 8 years ago
• umarfarook882 / Windows-InstallerBypass
  Windows Installer Bypass using Rollback Script .rbs and .rbf - Race Condition
  ☆22Updated 6 years ago
• outflanknl / DoH_c2_Trigger
  Code for blogpost: https://outflank.nl/blog/2018/10/25/building-resilient-c2-infrastructues-using-dns-over-https/
  ☆52Updated 6 years ago
• mitre-attack / joystick
  Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…
  ☆64Updated last year
• 3gstudent / Eventlogedit-evt--General
  Remove individual lines from Windows Event Viewer Log (EVT) files
  ☆45Updated 4 years ago