Immersive-Labs-Sec / SliverC2-ForensicsLinks
A collection of tools and detections for the Sliver C2 Frameworj
☆131Updated 2 years ago
Alternatives and similar repositories for SliverC2-Forensics
Users that are interested in SliverC2-Forensics are comparing it to the libraries listed below
Sorting:
- Detect WFP filters blocking EDR communications☆94Updated last year
- MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.☆220Updated 2 years ago
- Windows Persistence IT-Security☆106Updated 7 months ago
- Retrieve inner payloads from Donut samples☆110Updated last year
- Fully functional, from-scratch alternative to the Cobalt Strike Beacon (red teaming tool), offering transparency and flexibility for secu…☆250Updated last year
- An interactive shell to spoof some LOLBins command line☆186Updated last year
- ☆326Updated 2 months ago
- This repo will contain the core detection, only for Cobaltstrike's leaked versions. Non-leaked version detections wont be shared☆88Updated 2 years ago
- ☆189Updated last year
- A comprehensive ETW (Event Tracing for Windows) event generation tool designed for testing and research purposes.☆244Updated last month
- shared samples from #dailyphish and/or #apt tweets☆41Updated last month
- Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…☆140Updated last year
- ☆119Updated last year
- Configuration Extractors for Malware☆117Updated 6 months ago
- Tools for analyzing EDR agents☆264Updated last year
- Extract C2 Traffic☆251Updated 11 months ago
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆148Updated last year
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆154Updated last year
- lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection☆245Updated 4 months ago
- LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…☆132Updated last week
- ☆37Updated last year
- PoCs of RCEs against open source C2 servers☆87Updated last year
- A ProcessMonitor visualization application written in rust.☆184Updated 2 years ago
- A collection of tools, scripts and personal research☆145Updated 2 months ago
- SHELLSILO is a cutting-edge tool that translates C syntax into syscall assembly and its corresponding shellcode. It streamlines the proce…☆141Updated 2 months ago
- ☆185Updated 2 years ago
- ☆163Updated 2 years ago
- Finding secrets in kernel and user memory☆115Updated 2 years ago
- A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …☆165Updated last year
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆66Updated 3 years ago