Insane-Forensics / drovorub-hunt

Related projects: ⓘ

• nettitude / PoshC2_IOCs
  A list of IOCs applicable to PoshC2
  ☆23Updated 4 years ago
• keydet89 / LNK
  Repository for LNK stuff
  ☆27Updated 2 years ago
• aaronst / talks
  Presentation materials for talks I've given.
  ☆20Updated 4 years ago
• IceMoonHSV / Sim
  C# User Simulation
  ☆33Updated last year
• keydet89 / IWSBook
  Site for IWS book content
  ☆18Updated 5 years ago
• mandiant / goauditparser
  ☆42Updated last year
• swimlane / PSAttck
  PSAttck is a light-weight framework for the MITRE ATT&CK Framework.
  ☆38Updated 2 years ago
• redcanaryco / public-research
  Public repository for Red Canary Research
  ☆33Updated 3 years ago
• ConsciousHacker / GreatSCT
  The project is called GreatSCT (Great Scott). GreatSCT is an open source project to generate application white list bypasses. This tool i…
  ☆28Updated 6 years ago
• sourcefrenchy / certexfil
  Exfiltration based on custom X509 certificates
  ☆25Updated 6 months ago
• mandiant / pulsesecure_exploitation_countermeasures
  ☆22Updated last year
• 2igosha / sunburst_dga
  ☆22Updated 3 years ago
• s0lst1c3 / awae
  ☆16Updated 7 years ago
• krakow2600 / atomic-threat-coverage
  The project was moved here https://github.com/atomic-threat-coverage/atomic-threat-coverage
  ☆23Updated 5 years ago
• s0lari / Decoy-sploit
  Bunch of honey related items that spoof/decoy powersploit functions.
  ☆18Updated 4 years ago
• Compiler-Error / dankAlerts
  dankAlerts is powered by Sysmon and Memes. Would you notice if a suspicious process was recorded in the event log?
  ☆17Updated 4 years ago
• OTRF / bloodhound-notebook
  BloodHound Cypher Queries Ported to a Jupyter Notebook
  ☆53Updated 4 years ago
• BinaryDefense / IcedDecrypt
  IcedID Decryption Tool
  ☆27Updated 3 years ago
• moullos / Mitigate
  Machine Interrogation To Identify Gaps & Techniques for Execution
  ☆32Updated 2 years ago
• jipegit / IncidentsMindMaps
  Cybersecurity Incidents Mind Maps
  ☆32Updated 2 years ago
• BinaryDefense / beacon-fronting
  A simple command line program to help defender test their detections for network beacon patterns and domain fronting
  ☆65Updated 2 years ago
• JacobPimental / gunslinger
  Gunslinger is used to hunt for Magecart sites using URLScan's API
  ☆30Updated 2 years ago
• TheCyberViking / CoverStory
  A cover story generator for people who Need Quick Covers On Operations
  ☆13Updated 4 years ago
• skelsec / pypykatz-volatility3
  pypykatz plugin for volatility3 framework
  ☆30Updated 5 months ago
• NoDataFound / RiskIQ.SunBurst.Hunter
  The Purpose of this research tool is to provide a Python client into RiskIQ API services.
  ☆22Updated 3 years ago
• ProfessionallyEvil / C4
  Cyberdelia, a Collection of Command and Control frameworks
  ☆63Updated 4 years ago
• ruppde / yara_rules
  Yara rules
  ☆18Updated last year
• c2defense / network-device-logs
  Analytics for Accounting logs from Network devices
  ☆16Updated 3 years ago
• Silv3rHorn / evtx2json
  evtx2json extracts events of interest from event logs, dedups them, and exports them to json.
  ☆41Updated 3 years ago
• tasooshi / exfilkit
  Data exfiltration utility for testing detection capabilities
  ☆57Updated 2 years ago