JSCU-NL / COATHANGERLinks
IOCs and detection script for COATHANGER malware
☆55Updated last year
Alternatives and similar repositories for COATHANGER
Users that are interested in COATHANGER are comparing it to the libraries listed below
Sorting:
- A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.☆34Updated last year
- MS Graph Commands and Tools for Blue Teamers☆50Updated last year
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆33Updated 2 months ago
- MalStatWare automates malware analysis with Python. Extract key details like file size, type, hash, path, and digital signature. It analy…☆29Updated last year
- 🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.☆78Updated 4 months ago
- Detection rule validation☆41Updated last year
- ☆74Updated last week
- ASR Configurator, Essentials and Atomic Testing☆89Updated 4 months ago
- Research repository tracking affected IPs from the Fortigate CVE-2022-40684 configuration leak by Belsen Group☆86Updated 7 months ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆54Updated 8 months ago
- NoDelete is a tool that assists in malware analysis by locking a folder where malware drops files before deleting them.☆48Updated 7 months ago
- Bash Script to extract GNU/Linux forensic artifacts for digital forensic analysis and incident response.☆43Updated 2 years ago
- Python Prototype Scripts to Exploit or Discover Network vulnerabilities and misconfiguration.☆18Updated last year
- A simple tool designed to create Atomic Red Team tests with ease.☆46Updated 5 months ago
- PowerShell Script Analyzer☆70Updated last year
- information about ransomware groups (Ransomware Analysis Notes)☆38Updated last year
- create a "simulated internet" cyber range environment☆18Updated 3 months ago
- A web application that allows the users to check whether their SPF, DMARC and DKIM configuration is set up correctly.☆145Updated this week
- Slides of my public talks☆56Updated last year
- IOC Stream and Command and Control Database Containing Command and Control (C2) Servers Detected Daily by ThreatMon.☆67Updated last year
- ☆48Updated 6 months ago
- Tools and scripts to deploy and manage OpenRelik instances☆15Updated 2 months ago
- Detects CanaryTokens in Office docs and PDFs (docx, xlsx, pptx, pdf) without triggering alerts.☆120Updated last year
- AppLocker Policy Generator☆19Updated last week
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆52Updated 2 years ago
- ☆78Updated last year
- ☆53Updated 2 weeks ago
- Actively hunt for attacker infrastructure by filtering Shodan results with URLScan data.☆61Updated last year
- ☆32Updated 2 years ago
- ServiceLens is a Python tool for analyzing services linked to Microsoft 365 domains. It scans DNS records like SPF and DMARC to identify …☆77Updated 10 months ago