Droogy / Malware-StudyLinks
A collection of notes and rules (Snort/Suricata, Sigma, and YARA) to identify various samples of malware.
☆14Updated 4 years ago
Alternatives and similar repositories for Malware-Study
Users that are interested in Malware-Study are comparing it to the libraries listed below
Sorting:
- TA505+ Adversary Simulation☆65Updated 4 years ago
- Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.☆68Updated 3 years ago
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆70Updated 3 years ago
- An Ansible role for installing Cobalt Strike.☆81Updated last month
- ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabili…☆177Updated 3 weeks ago
- Tradecraft Development Fundamentals☆40Updated 4 years ago
- Petaq - Purple Team Command & Control Server☆105Updated 2 years ago
- Carbon Black Response IR tool☆54Updated 4 years ago
- ☆27Updated 4 years ago
- Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…☆17Updated 4 years ago
- A Red Team tool for exfiltrating sensitive data from Jira tickets.☆87Updated 2 years ago
- Building ActiveDirectory Lab for practicing various attack vectors used during Red Team engagement.☆37Updated 5 years ago
- Azur3Alph4 is a PowerShell module that automates red-team tasks for ops on objective. This module situates in a post-breach (RCE achieved…☆63Updated 4 years ago
- Harvis is designed to automate your C2 Infrastructure.☆108Updated 3 years ago
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆60Updated 2 years ago
- Triaging Windows event logs based on SANS Poster☆40Updated last week
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆74Updated 3 years ago
- ☆43Updated 3 years ago
- See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)☆104Updated 2 years ago
- Spin up RedTeam infrastructure on AWS via Ansible☆63Updated 5 years ago
- Terraform resources for building HTTP, DNS, phishing, and mail server red team infrastructure☆95Updated 6 years ago
- Exploit for HiveNightmare - CVE-2021–36934☆60Updated last month
- Get intelligence info (tags, mitre techniques, yara and more) and find similar malware in a fast and easy way☆19Updated 3 years ago
- Picus Labs☆44Updated 4 years ago
- This repo will contain some basic pentest/RT commands.☆38Updated 3 years ago
- Windows TCPIP Finger Command / C2 Channel and Bypassing Security Software☆68Updated 2 years ago
- ☆48Updated 5 years ago
- (kinda) Malicious Outlook Reader☆136Updated 4 years ago
- C# and Impacket implementation (here with Kerberos auth support) of PrintNightmare CVE-2021-1675/CVE-2021-34527☆29Updated 4 years ago
- Post-exploitation tool for attacking Active Directory domain controllers☆18Updated 2 years ago