H4NM / WhoYouCallingLinks
Records an executable's network activity into a Full Packet Capture file (.pcap) and much more.
☆442Updated 6 months ago
Alternatives and similar repositories for WhoYouCalling
Users that are interested in WhoYouCalling are comparing it to the libraries listed below
Sorting:
- Nuke It From Orbit - remove AV/EDR with physical access☆263Updated 10 months ago
- PowerShell script helping Incident Responders discover potential adversary persistence mechanisms.☆320Updated 5 months ago
- ScriptSentry finds misconfigured and dangerous logon scripts.☆594Updated 9 months ago
- A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain.☆380Updated 2 weeks ago
- A GUI and CLI tool for removing bloat from executables☆424Updated 3 months ago
- PowerShell tools to help defenders hunt smarter, hunt harder.☆434Updated last month
- A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities☆681Updated 11 months ago
- DECeption with Evaluative Integrated Validation Engine (DECEIVE): Let an LLM do all the hard honeypot work!☆264Updated 3 months ago
- SharpEye: Advanced Linux Intrusion Detection and Threat Hunting System☆160Updated 4 months ago
- An ADCS honeypot to catch attackers in your internal network.☆312Updated last year
- A repository of credential stealer formats☆227Updated 4 months ago
- Wireshark RDP resources☆216Updated 4 months ago
- ☆257Updated last month
- A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory☆273Updated last year
- Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.☆198Updated last week
- A deliberately vulnerable Microsoft Entra ID environment. Learn identity security through hands-on, realistic attack challenges.☆604Updated 2 weeks ago
- ☆508Updated last year
- Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!☆389Updated last year
- Compiled tools for internal assessments☆359Updated last week
- A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…☆178Updated 4 months ago
- The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…☆255Updated last year
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆391Updated 2 weeks ago
- Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.☆201Updated this week
- ☆241Updated 4 months ago
- Assess the security of your Active Directory with few or all privileges.☆334Updated 4 months ago
- ☆161Updated 2 years ago
- Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI☆846Updated 5 months ago
- Ludus is a system to build easy to use cyber environments, or "ranges" for testing and development.☆51Updated last year
- Analyze pcaps with Zeek and a Grafana Dashboard☆185Updated last year
- Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive an…☆1,033Updated last week