Droogy / Malware-StudyLinks
A collection of notes and rules (Snort/Suricata, Sigma, and YARA) to identify various samples of malware.
☆14Updated 4 years ago
Alternatives and similar repositories for Malware-Study
Users that are interested in Malware-Study are comparing it to the libraries listed below
Sorting:
- Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.☆69Updated 3 years ago
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆70Updated 4 years ago
- An Ansible role for installing Cobalt Strike.☆80Updated last month
- ☆43Updated 3 years ago
- Triaging Windows event logs based on SANS Poster☆44Updated 2 months ago
- ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabili…☆178Updated 2 weeks ago
- ☆28Updated 4 years ago
- Harvis is designed to automate your C2 Infrastructure.☆107Updated 3 years ago
- Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…☆17Updated 4 years ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆74Updated 4 years ago
- Tradecraft Development Fundamentals☆40Updated 4 years ago
- Petaq - Purple Team Command & Control Server☆105Updated 3 years ago
- TA505+ Adversary Simulation☆65Updated 5 years ago
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆60Updated 3 years ago
- Azur3Alph4 is a PowerShell module that automates red-team tasks for ops on objective. This module situates in a post-breach (RCE achieved…☆63Updated 4 years ago
- A Red Team tool for exfiltrating sensitive data from Jira tickets.☆86Updated 2 years ago
- Carbon Black Response IR tool☆55Updated 5 years ago
- A small POC of using Azure Functions to relay communications. Feel free to add additional functionality beyond this POC!☆80Updated 2 years ago
- OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.☆90Updated 3 years ago
- CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"☆51Updated 3 years ago
- Building ActiveDirectory Lab for practicing various attack vectors used during Red Team engagement.☆38Updated 5 years ago
- Exploit for HiveNightmare - CVE-2021–36934☆61Updated 5 months ago
- Spin up RedTeam infrastructure on AWS via Ansible☆64Updated 5 years ago
- ☆48Updated 5 years ago
- See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)☆107Updated 2 years ago
- Terraform resources for building HTTP, DNS, phishing, and mail server red team infrastructure☆95Updated 6 years ago
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆66Updated 3 years ago
- Get intelligence info (tags, mitre techniques, yara and more) and find similar malware in a fast and easy way☆19Updated 3 years ago
- Detecting Cobalt Strike Team Servers on targets through traffic telemetry.☆22Updated last year
- Weaponising C# - Fundamentals Training Content☆70Updated 4 years ago