DiabloHorn / yara4pentesters

Related projects: ⓘ

• fugawi / mate
  Mitre Att&ck Technique Emulation
  ☆82Updated 5 years ago
• clong / detect-responder
  ☆76Updated 6 years ago
• xenoscr / atomiccaldera
  A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…
  ☆71Updated 2 years ago
• SMAPPER / MimikatzHoneyToken
  This is a logon script used to detect the theft of credentials by tools such as Mimikatz
  ☆116Updated 9 years ago
• chrisjd20 / power_dump
  ☆28Updated this week
• haroldogden / adb
  ☆85Updated this week
• threatexpress / portplow
  PortPlow is a distributed port and system scanning & enumeration service. It enables the quick and automated enumeration of ports and ser…
  ☆53Updated 6 years ago
• MotiBa / Invoke-Adversary
  ☆35Updated this week
• giMini / NOAH
  PowerShell No Agent Hunting
  ☆107Updated 6 years ago
• CyberMonitor / Invoke-Adversary
  Simulating Adversary Operations
  ☆93Updated 6 years ago
• n00py / NorkNork
  Powershell Empire Persistence finder
  ☆116Updated 7 years ago
• Neo23x0 / exotron
  Sandbox feature upgrade with the help of wrapped samples
  ☆75Updated 6 years ago
• opensourcesec / CIRTKit
  Tools for the Computer Incident Response Team
  ☆141Updated 7 years ago
• ustayready / CloudBurst
  CloudBurst is a red team framework for interacting with cloud providers to capture, compromise, and exfil data.
  ☆36Updated 6 years ago
• vysecurity / ATT-CK_Analysis
  Repository for my ATT&CK analysis research.
  ☆68Updated 5 years ago
• dstepanic / attck_empire
  Generate ATT&CK Navigator layer file from PowerShell Empire agent logs
  ☆47Updated 6 years ago
• decoder-it / whoami-priv-Hackinparis2019
  Slides from my talk in "Hackinparis" 2019 edition
  ☆89Updated 5 years ago
• curi0usJack / ADImporter
  Credit to Helge Klein - https://helgeklein.com/blog/2015/02/creating-realistic-test-user-accounts-active-directory/
  ☆69Updated 6 years ago
• NVISOsecurity / SEC599
  SEC599 supporting GitHub repository
  ☆14Updated 5 years ago
• mosse-security / tactical-lab
  A curated list of tools, papers and techniques for Windows exploitation and incident response.
  ☆40Updated 8 years ago
• NextronSystems / valhallaAPI
  Valhalla API Client
  ☆62Updated last year
• DLACERT / ThreatHunting
  ☆133Updated this week
• swisscom / PowerGRR
  PowerGRR is an API client library in PowerShell working on Windows, Linux and macOS for GRR automation and scripting.
  ☆56Updated 2 years ago
• swizzlez / Invoke-EnumSecurityTools
  ☆59Updated 5 years ago
• Kevin-Robertson / Conveigh
  Conveigh is a Windows PowerShell LLMNR/NBNS spoofer detection tool
  ☆91Updated 8 years ago
• porterhau5 / BloodHound-Owned
  A collection of files for adding and leveraging custom properties in BloodHound.
  ☆181Updated 4 years ago
• MinervaLabsResearch / Mystique
  Mystique may be used to discover infection markers that can be used to vaccinate endpoints against malware. It receives as input a malici…
  ☆80Updated 6 years ago
• ecstatic-nobel / Analyst-Arsenal
  A toolkit for Security Researchers
  ☆124Updated 5 years ago
• chrismaddalena / Fox
  A companion tool for BloodHound offering Active Directory statistics and number crunching
  ☆63Updated 6 years ago
• byt3bl33d3r / Slides
  Slides from various talks that I've given over the years
  ☆117Updated last year