JSCU-NL / COATHANGERLinks
IOCs and detection script for COATHANGER malware
☆55Updated last year
Alternatives and similar repositories for COATHANGER
Users that are interested in COATHANGER are comparing it to the libraries listed below
Sorting:
- MS Graph Commands and Tools for Blue Teamers☆50Updated last year
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆34Updated 2 months ago
- A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.☆34Updated last year
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆54Updated 9 months ago
- MalStatWare automates malware analysis with Python. Extract key details like file size, type, hash, path, and digital signature. It analy…☆30Updated last year
- Detection rule validation☆41Updated last year
- 🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.☆78Updated 5 months ago
- Python Prototype Scripts to Exploit or Discover Network vulnerabilities and misconfiguration.☆19Updated last year
- information about ransomware groups (Ransomware Analysis Notes)☆39Updated last year
- Baseline a Windows System against LOLBAS☆63Updated last year
- NoDelete is a tool that assists in malware analysis by locking a folder where malware drops files before deleting them.☆48Updated 8 months ago
- ServiceLens is a Python tool for analyzing services linked to Microsoft 365 domains. It scans DNS records like SPF and DMARC to identify …☆77Updated 11 months ago
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆52Updated 2 years ago
- A simple tool designed to create Atomic Red Team tests with ease.☆46Updated 6 months ago
- PowerShell Script Analyzer☆70Updated last year
- DEFCON 31 slide deck and video link☆64Updated 3 months ago
- AppLocker Policy Generator☆20Updated 3 weeks ago
- create a "simulated internet" cyber range environment☆18Updated 3 months ago
- Inboxfuscation is an advanced offensive & defensive framework for mailbox rule obfuscation and detection in Exchange environments.☆25Updated last week
- ☆74Updated this week
- Script to test NetSec capabilities.☆21Updated 2 years ago
- A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.☆26Updated 6 months ago
- A web application that allows the users to check whether their SPF, DMARC and DKIM configuration is set up correctly.☆145Updated last week
- ☆32Updated 2 years ago
- Detects CanaryTokens in Office docs and PDFs (docx, xlsx, pptx, pdf) without triggering alerts.☆121Updated last year
- Tools and scripts to deploy and manage OpenRelik instances☆15Updated 3 months ago
- Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…☆71Updated 3 months ago
- ☆32Updated 9 months ago
- This script enhances endpoint logging telemetry for the purpose of advanced malware threat detection or for building detections or malwar…☆33Updated 5 months ago
- ASR Configurator, Essentials and Atomic Testing☆91Updated 5 months ago