Alternatives and similar repositories for rdphoney

Users that are interested in rdphoney are comparing it to the libraries listed below

• ohjeongwook / PowerShellRunBox
  Dynamic PowerShell Analysis Framework Based Upon PowerShell Debugging Functionality
  ☆83Updated 2 years ago
• GoSecure / DLLPasswordFilterImplant
  DLL Password Filter Implant with Exfiltration Capabilities
  ☆138Updated 5 years ago
• nao-sec / tknk_scanner
  Community-based integrated malware identification system
  ☆81Updated 3 years ago
• Lifars / gargamel
  A forensic evidence acquirer
  ☆86Updated 4 years ago
• RomanEmelyanov / CobaltStrikeForensic
  Toolset for research malware and Cobalt Strike beacons
  ☆211Updated 9 months ago
• kryptoslogic / rdppot
  RDP honeypot
  ☆68Updated 6 years ago
• sysopfb / malware_decoders
  Static based decoders for malware samples
  ☆94Updated 5 years ago
• faisalusuf / ThreatIntelligence
  Tracking APT IOCs
  ☆25Updated 5 years ago
• jipegit / IncidentsMindMaps
  Cybersecurity Incidents Mind Maps
  ☆34Updated 4 years ago
• tstillz / webshell-scan
  Simple web shell scanner written in Golang.
  ☆89Updated 6 years ago
• v1ado / HIPS_LIPS
  Community maintained list of most popular HIPS service and process names on a Windows Platform.
  ☆43Updated 3 years ago
• outflanknl / DoH_c2_Trigger
  Code for blogpost: https://outflank.nl/blog/2018/10/25/building-resilient-c2-infrastructues-using-dns-over-https/
  ☆54Updated 7 years ago
• mitre-attack / joystick
  Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…
  ☆64Updated 2 years ago
• 1d8 / macros
  ☆50Updated 5 years ago
• tstillz / webshell-analyzer
  Web shell scanner and analyzer.
  ☆113Updated 2 years ago
• claroty / CVE2020-0796
  CVE2020-0796 SMBv3 RCE
  ☆61Updated 5 years ago
• nccgroup / pybeacon
  A collection of scripts for dealing with Cobalt Strike beacons in Python
  ☆169Updated 5 years ago
• geek-repo / C2-Blockchain
  This is a concept poc of command and control server implemented over blockchain
  ☆54Updated 6 years ago
• Cymmetria / ciscoasa_honeypot
  A low interaction honeypot for the Cisco ASA component capable of detecting CVE-2018-0101, a DoS and remote code execution vulnerability.
  ☆57Updated 7 years ago
• Ice3man543 / MalScan
  A Simple PE File Heuristics Scanners
  ☆52Updated 6 years ago
• ninoseki / ukemi
  A CLI tool for querying passive DNS services
  ☆42Updated 2 years ago
• 3gstudent / Eventlogedit-evt--General
  Remove individual lines from Windows Event Viewer Log (EVT) files
  ☆44Updated 4 years ago
• demonsec666 / Secist_Applocker
  ☆32Updated 7 years ago
• rapid7 / rex-powershell
  Rex library for dealing with Powershell Scripts
  ☆54Updated 5 months ago
• Dankirk / RegSLScan
  A tool for scanning registery key permissions. Find where non-admins can create symbolic links.
  ☆45Updated 6 years ago
• nccgroup / Royal_APT
  Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research
  ☆53Updated 7 years ago
• memoryforensics1 / VolExp
  volatility explorer
  ☆92Updated 5 years ago
• praetorian-inc / slack-c2bot
  Slack C2bot that executes commands and returns the output.
  ☆47Updated 2 years ago
• telsy-cyberops / research
  Telsy CTI Research Team
  ☆57Updated 5 years ago
• PCsXcetra / DerbyCon-2019Files
  This is a group of tools that I was planning on releasing During Derbycon 2019 talk if it was accepted or with a blogpost if not.
  ☆43Updated 4 years ago