Immersive-Labs-Sec/BruteRatel-DetectionTools external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Immersive-Labs-Sec/BruteRatel-DetectionTools

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Immersive-Labs-Sec/BruteRatel-DetectionTools)

Close

Immersive-Labs-Sec / BruteRatel-DetectionToolsView on GitHubMore

• External links
• Readme badge

A collection of Tools and Rules for decoding Brute Ratel C4 badgers

☆66Jul 7, 2022Updated 3 years ago

Alternatives and similar repositories for BruteRatel-DetectionTools

Users that are interested in BruteRatel-DetectionTools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• k3idii / ION

  View on GitHub
  Indicators of Normality
  ☆11Jul 22, 2022Updated 3 years ago
• CD-R0M / YARA

  View on GitHub
  Hundred Days of Yara Challenge
  ☆12Jun 21, 2022Updated 3 years ago
• tsale / TA_tooling

  View on GitHub
  ☆10Dec 24, 2022Updated 3 years ago
• paranoidninja / Brute-Ratel-C4-Community-Kit

  View on GitHub
  This repository contains scripts, configurations and deprecated payload loaders for Brute Ratel C4 (https://bruteratel.com/)
  ☆295Aug 5, 2024Updated last year
• matthw / malware_analysis

  View on GitHub
  ☆18Mar 26, 2024Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• StupidBird-Code / Malware_Analysize-Tools

  View on GitHub
  Here are some tools I developed to help analyze malware
  ☆11Nov 8, 2023Updated 2 years ago
• PacktPublishing / Windows-APT-Warfare

  View on GitHub
  Windows APT Warfare, published by Packt
  ☆73Mar 11, 2023Updated 3 years ago
• tsale / Sigma_rules

  View on GitHub
  Sigma rules to share with the community
  ☆126Jan 29, 2025Updated last year
• stairwell-inc / cobalt-strike-stager-parser

  View on GitHub
  ☆36Jan 11, 2023Updated 3 years ago
• Patrick-DE / C2-logparser

  View on GitHub
  Parses logs created by Cobalt Strike, Brute Ratel, OC2 and creates an SQLite DB which can be used to create custom reports.
  ☆29Mar 18, 2026Updated 3 months ago
• BinaryDefense / YaraMemoryScanner

  View on GitHub
  Simple PowerShell script to enable process scanning with Yara.
  ☆100Oct 4, 2022Updated 3 years ago
• target / halogen

  View on GitHub
  Automatically create YARA rules from malicious documents.
  ☆211May 16, 2022Updated 4 years ago
• CrowdStrike / SuperMem

  View on GitHub
  A python script developed to process Windows memory images based on triage type.
  ☆266Nov 25, 2023Updated 2 years ago
• carbonblack / active_c2_ioc_public

  View on GitHub
  Active C2 IoCs
  ☆100Nov 28, 2022Updated 3 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• brimorlabs / KStrike

  View on GitHub
  Stand-alone parser for User Access Logging from Server 2012 and newer systems
  ☆80Jan 9, 2024Updated 2 years ago
• Te-k / cobaltstrike

  View on GitHub
  Code and yara rules to detect and analyze Cobalt Strike
  ☆274May 5, 2021Updated 5 years ago
• paranoidninja / Brute-Ratel-External-C2-Specification

  View on GitHub
  This repository provides the core to build your own External C2 Server and Connector for Brute Ratel C4
  ☆57May 8, 2022Updated 4 years ago
• Vector35 / official-plugins

  View on GitHub
  Repository for officially supported Binary Ninja plugins
  ☆57Jun 10, 2026Updated last week
• svch0stz / velociraptor-detections

  View on GitHub
  ☆22Jan 31, 2023Updated 3 years ago
• timwhitez / JmpUnhook

  View on GitHub
  Ntdll Unhooking POC
  ☆18Aug 12, 2022Updated 3 years ago
• laciKE / EsetLogParser

  View on GitHub
  Python script for parsing ESET (NOD32) virlog.dat file.
  ☆15Sep 28, 2017Updated 8 years ago
• Sam0x90 / CB-Threat-Hunting

  View on GitHub
  CarbonBlack EDR detection rules and response actions
  ☆73Sep 10, 2024Updated last year
• chronicle / GCTI

  View on GitHub
  ☆553Dec 4, 2023Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• WithSecureLabs / GarbageMan

  View on GitHub
  GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.
  ☆120Apr 8, 2023Updated 3 years ago
• malware-kitten / shellcode_hashes

  View on GitHub
  A collection of shellcode hashes
  ☆17Aug 15, 2018Updated 7 years ago
• timwhitez / Doge-DumpMem

  View on GitHub
  dump lsass
  ☆37May 24, 2022Updated 4 years ago
• Sh3llyR / statiStrings

  View on GitHub
  YARA Rule Strings Statistics Calculator and Malware Research Helper
  ☆14Jul 24, 2021Updated 4 years ago
• fxb-cocacoding / yara-signator

  View on GitHub
  Automatic YARA rule generation for Malpedia
  ☆167Sep 8, 2022Updated 3 years ago
• Kudaes / Puzzle

  View on GitHub
  Set of PoC to abuse Windows minifilters functionality
  ☆86May 1, 2026Updated last month
• pan-unit42 / dotnetfile

  View on GitHub
  ☆118Feb 13, 2026Updated 4 months ago
• dilibili / Hook_KiUserExceptionDispatcher

  View on GitHub
  R3劫持所有异常
  ☆14Jan 4, 2021Updated 5 years ago
• theflakes / fmd

  View on GitHub
  Windows file metadata / forensic tool.
  ☆20May 31, 2026Updated 2 weeks ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• The-DFIR-Report / cyberchef-recipes

  View on GitHub
  ☆21May 8, 2022Updated 4 years ago
• daem0nc0re / TangledWinExec

  View on GitHub
  PoCs and tools for investigation of Windows process execution techniques
  ☆960Feb 2, 2026Updated 4 months ago
• robertdavidgraham / smb-logger

  View on GitHub
  Logs incoming attempts to connect to NetBIOS/SMB
  ☆14May 15, 2017Updated 9 years ago
• NexusFuzzy / NanoDump

  View on GitHub
  Tool to decrypt the configuration of NanoCore and dump all used plugins
  ☆12Dec 8, 2020Updated 5 years ago
• AndrewRathbun / SANSGoldPaperResearch_FOR500_Rathbun

  View on GitHub
  A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.
  ☆27Jul 27, 2022Updated 3 years ago
• nicholasvg / RunPE-Process-Hollowing-GO

  View on GitHub
  Thanks to @d35ha
  ☆12Aug 16, 2021Updated 4 years ago
• EspressoCake / Cobalt_Strike_Ansible

  View on GitHub
  A project to replicate the functionality of Noah Powers' ServerSetup script, but with error handling and fixed Namecheap API support.
  ☆33Oct 1, 2021Updated 4 years ago