Immersive-Labs-Sec / HavocC2-ForensicsLinks
A set of tools and resources for analysis of Havoc C2
☆24Updated last year
Alternatives and similar repositories for HavocC2-Forensics
Users that are interested in HavocC2-Forensics are comparing it to the libraries listed below
Sorting:
- ☆164Updated 9 months ago
- BSides Prishtina 2024 Malware Development and Persistence workshop☆117Updated 6 months ago
- Convert your shellcode into an ASCII string☆125Updated 5 months ago
- POC of GITHUB simple C2 in rust☆52Updated 4 months ago
- ☆157Updated 5 months ago
- Windows Administrator level Implant.☆50Updated last year
- Permanently disable EDRs as local admin☆122Updated 2 months ago
- Utilities for obfuscating shellcode☆96Updated 2 months ago
- Stuxnet extracted binaries by reversing & Stuxnet Rootkit Analysis☆76Updated last year
- Situational Awareness script to identify how and where to run implants☆67Updated last year
- ☆42Updated last year
- ☆108Updated last year
- ☆87Updated last year
- ☆147Updated 2 months ago
- Swiss Army Knife for payload encryption, obfuscation, and conversion to byte arrays – all in a single command (14 output formats supporte…☆202Updated 2 months ago
- A collection of commands, tools, techniques and procedures of the purplestorm ctf team.☆11Updated 8 months ago
- ModTracer Finds Hidden Linux Kernel Rootkits and then make visible again.☆88Updated 9 months ago
- A python script to automatically list vulnerable Windows ACEs/ACLs.☆62Updated 5 months ago
- ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminatin…☆119Updated 10 months ago
- Bypass user-land hooks by syscall tampering via the Trap Flag☆135Updated 3 months ago
- Execute shellcode via ASPNET compiler☆58Updated 2 months ago
- Vibe Malware Triage - MCP server for static PE analysis.☆73Updated last week
- Охотник (Hunter) is a simple Adversary Simulation tool developed for achieves stealth through API unhooking, direct and indirect syscalls…☆89Updated 7 months ago
- ☆61Updated 7 months ago
- Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …☆39Updated 9 months ago
- Chameleon is a polymorphic engine for x86_64 position independent shellcode that has been created out of the need to evade signature-base…☆45Updated 2 months ago
- Encodes a payload within a generated mock-CSS file☆59Updated 2 years ago
- A powerful shell script for creating custom WSL (Windows Subsystem for Linux) distributions with embedded payloads.☆72Updated 3 weeks ago
- ☆24Updated 9 months ago
- The different ways to dump lsass☆201Updated 3 months ago