Immersive-Labs-Sec/BruteRatel-DetectionTools external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Immersive-Labs-Sec/BruteRatel-DetectionTools

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Immersive-Labs-Sec/BruteRatel-DetectionTools)

Close

Immersive-Labs-Sec / BruteRatel-DetectionToolsView on GitHubMore

• External links
• Readme badge

A collection of Tools and Rules for decoding Brute Ratel C4 badgers

☆66Jul 7, 2022Updated 3 years ago

Alternatives and similar repositories for BruteRatel-DetectionTools

Users that are interested in BruteRatel-DetectionTools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• k3idii / ION

  View on GitHub
  Indicators of Normality
  ☆11Jul 22, 2022Updated 3 years ago
• CD-R0M / YARA

  View on GitHub
  Hundred Days of Yara Challenge
  ☆12Jun 21, 2022Updated 3 years ago
• tsale / TA_tooling

  View on GitHub
  ☆10Dec 24, 2022Updated 3 years ago
• paranoidninja / Brute-Ratel-C4-Community-Kit

  View on GitHub
  This repository contains scripts, configurations and deprecated payload loaders for Brute Ratel C4 (https://bruteratel.com/)
  ☆293Aug 5, 2024Updated last year
• matthw / malware_analysis

  View on GitHub
  ☆18Mar 26, 2024Updated 2 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• StupidBird-Code / Malware_Analysize-Tools

  View on GitHub
  Here are some tools I developed to help analyze malware
  ☆11Nov 8, 2023Updated 2 years ago
• tsale / Sigma_rules

  View on GitHub
  Sigma rules to share with the community
  ☆124Jan 29, 2025Updated last year
• stairwell-inc / cobalt-strike-stager-parser

  View on GitHub
  ☆36Jan 11, 2023Updated 3 years ago
• Patrick-DE / C2-logparser

  View on GitHub
  Parses logs created by Cobalt Strike, Brute Ratel, OC2 and creates an SQLite DB which can be used to create custom reports.
  ☆26Mar 18, 2026Updated last week
• BinaryDefense / YaraMemoryScanner

  View on GitHub
  Simple PowerShell script to enable process scanning with Yara.
  ☆98Oct 4, 2022Updated 3 years ago
• target / halogen

  View on GitHub
  Automatically create YARA rules from malicious documents.
  ☆211May 16, 2022Updated 3 years ago
• CrowdStrike / SuperMem

  View on GitHub
  A python script developed to process Windows memory images based on triage type.
  ☆266Nov 25, 2023Updated 2 years ago
• sk3w / beacon-object-files

  View on GitHub
  Miscellaneous examples for use with Cobalt Strike Beacon
  ☆10Nov 19, 2020Updated 5 years ago
• carbonblack / active_c2_ioc_public

  View on GitHub
  Active C2 IoCs
  ☆99Nov 28, 2022Updated 3 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• brimorlabs / KStrike

  View on GitHub
  Stand-alone parser for User Access Logging from Server 2012 and newer systems
  ☆79Jan 9, 2024Updated 2 years ago
• Te-k / cobaltstrike

  View on GitHub
  Code and yara rules to detect and analyze Cobalt Strike
  ☆272May 5, 2021Updated 4 years ago
• paranoidninja / Brute-Ratel-External-C2-Specification

  View on GitHub
  This repository provides the core to build your own External C2 Server and Connector for Brute Ratel C4
  ☆55May 8, 2022Updated 3 years ago
• Vector35 / official-plugins

  View on GitHub
  Repository for officially supported Binary Ninja plugins
  ☆56Mar 19, 2026Updated last week
• svch0stz / velociraptor-detections

  View on GitHub
  ☆22Jan 31, 2023Updated 3 years ago
• timwhitez / JmpUnhook

  View on GitHub
  Ntdll Unhooking POC
  ☆19Aug 12, 2022Updated 3 years ago
• laciKE / EsetLogParser

  View on GitHub
  Python script for parsing ESET (NOD32) virlog.dat file.
  ☆14Sep 28, 2017Updated 8 years ago
• Sam0x90 / CB-Threat-Hunting

  View on GitHub
  CarbonBlack EDR detection rules and response actions
  ☆73Sep 10, 2024Updated last year
• chronicle / GCTI

  View on GitHub
  ☆553Dec 4, 2023Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• malware-kitten / shellcode_hashes

  View on GitHub
  A collection of shellcode hashes
  ☆17Aug 15, 2018Updated 7 years ago
• WithSecureLabs / GarbageMan

  View on GitHub
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆119Apr 8, 2023Updated 2 years ago
• timwhitez / Doge-DumpMem

  View on GitHub
  dump lsass
  ☆37May 24, 2022Updated 3 years ago
• fxb-cocacoding / yara-signator

  View on GitHub
  Automatic YARA rule generation for Malpedia
  ☆168Sep 8, 2022Updated 3 years ago
• dilibili / Hook_KiUserExceptionDispatcher

  View on GitHub
  R3劫持所有异常
  ☆15Jan 4, 2021Updated 5 years ago
• pan-unit42 / dotnetfile

  View on GitHub
  ☆117Feb 13, 2026Updated last month
• theflakes / fmd

  View on GitHub
  Windows file metadata / forensic tool.
  ☆19Oct 12, 2025Updated 5 months ago
• The-DFIR-Report / cyberchef-recipes

  View on GitHub
  ☆21May 8, 2022Updated 3 years ago
• daem0nc0re / TangledWinExec

  View on GitHub
  PoCs and tools for investigation of Windows process execution techniques
  ☆955Feb 2, 2026Updated last month
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• robertdavidgraham / smb-logger

  View on GitHub
  Logs incoming attempts to connect to NetBIOS/SMB
  ☆14May 15, 2017Updated 8 years ago
• NexusFuzzy / NanoDump

  View on GitHub
  Tool to decrypt the configuration of NanoCore and dump all used plugins
  ☆12Dec 8, 2020Updated 5 years ago
• AndrewRathbun / SANSGoldPaperResearch_FOR500_Rathbun

  View on GitHub
  A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.
  ☆27Jul 27, 2022Updated 3 years ago
• nicholasvg / RunPE-Process-Hollowing-GO

  View on GitHub
  Thanks to @d35ha
  ☆13Aug 16, 2021Updated 4 years ago
• EspressoCake / Cobalt_Strike_Ansible

  View on GitHub
  A project to replicate the functionality of Noah Powers' ServerSetup script, but with error handling and fixed Namecheap API support.
  ☆33Oct 1, 2021Updated 4 years ago
• elastic / protections-artifacts

  View on GitHub
  Elastic Security detection content for Endpoint
  ☆1,392Updated this week
• m3rcer / Chisel-Strike

  View on GitHub
  A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.
  ☆458Mar 25, 2024Updated 2 years ago