Alternatives and similar repositories for Conti-Leaked-Playbook-TTPs:

Users that are interested in Conti-Leaked-Playbook-TTPs are comparing it to the libraries listed below

• Pascal-0x90 / sideloadr
  Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).
  ☆54Updated 2 years ago
• outflanknl / Training-MSOfficeOffensiveTradecraft
  Info related to the Outflank training: Microsoft Office Offensive Tradecraft
  ☆51Updated 9 months ago
• RedSiege / What-The-F
  This repo hosts a poc of how to execute F# code within an unmanaged process
  ☆65Updated 7 months ago
• rkbennett / pybof
  Python module for running BOFs
  ☆68Updated last year
• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 2 years ago
• ps1337 / Lastenzug
  Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level
  ☆25Updated 2 years ago
• antonioCoco / infosec-talks
  ☆48Updated last year
• cpu0x00 / EternelSuspention
  a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless
  ☆38Updated 7 months ago
• termanix / TokenElevation
  Token Elevation to authorized user as SYSTEM or Domain Admins
  ☆24Updated last year
• naksyn / talks
  Repo containing my public talks
  ☆23Updated last year
• mttaggart / quasar
  quASAR: ASAR manipulation made easy
  ☆25Updated 2 years ago
• 0xNinjaCyclone / IATUnhooker
  IAT Unhooking proof-of-concept
  ☆29Updated 10 months ago
• Octoberfest7 / Presentations
  Slide decks and/or materials from conference presentations
  ☆55Updated 2 years ago
• rtfmkiesel / loldrivers-client
  Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
  ☆81Updated last year
• Bl4ckM1rror / PEAs
  ☆58Updated last year
• ScriptIdiot / SysmonQuiet
  RDLL for Cobalt Strike beacon to silence sysmon process
  ☆87Updated 2 years ago
• mgeeky / CustomXMLPart
  A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.
  ☆36Updated 2 years ago
• Tylous / Slides
  ☆37Updated 9 months ago
• heartburn-dev / PKI-Escalate
  Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…
  ☆25Updated last year
• sourcefrenchy / DEFCON-30---Exotic-Data-Exfiltration
  Slides from my talk at the Adversary Village, Defcon 30
  ☆29Updated 2 years ago
• singe / nthasher
  A fast wordlist to nthash converter
  ☆21Updated 3 years ago
• mgeeky / msi-shenanigans
  Proof of Concept code and samples presenting emerging threat of MSI installer files.
  ☆78Updated 2 years ago
• pgormanDS / hash_spider
  A module for CME that spiders across a domain.
  ☆35Updated 2 years ago
• LuemmelSec / CVE-2023-29357
  ☆52Updated last year
• BlackSnufkin / CheckPlz
  Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.
  ☆13Updated last month
• 0xv1n / Havoc-ProfileGenerator
  malleable profile generator GUI for Havoc
  ☆56Updated last year
• nullsection / SharpETW-Patch
  ☆22Updated last year
• yo-yo-yo-jbo / injection_and_hooking_intro
  ☆38Updated last year
• Helixo32 / DetectHooks
  Detect userland hooks placed by AV/EDR
  ☆26Updated last year