Lifars / gargamelLinks
A forensic evidence acquirer
☆86Updated 4 years ago
Alternatives and similar repositories for gargamel
Users that are interested in gargamel are comparing it to the libraries listed below
Sorting:
- Linux Incident Response☆90Updated 5 years ago
- ☆53Updated 6 years ago
- Threat Mapping Catalogue☆17Updated 3 years ago
- Blueteam operational triage registry hunting/forensic tool.☆145Updated 2 years ago
- Cybersecurity Incidents Mind Maps☆33Updated 3 years ago
- Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation☆106Updated 3 years ago
- Toolset for research malware and Cobalt Strike beacons☆211Updated 2 months ago
- Carbon Black Response IR tool☆53Updated 4 years ago
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆69Updated 3 years ago
- Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…☆64Updated last year
- Simulating Adversary Operations☆93Updated 7 years ago
- Signature engine for all your logs☆170Updated last year
- Active C2 IoCs☆99Updated 2 years ago
- Hunt for Keywords , Mutex, Windows Event,Registry Keys,Process,Schedule tasks in Windows Machine☆22Updated 5 months ago
- Detect possible sysmon logging bypasses given a specific configuration☆111Updated 6 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 3 years ago
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆166Updated 2 years ago
- Terraform resources for building HTTP, DNS, phishing, and mail server red team infrastructure☆93Updated 5 years ago
- ☆12Updated 3 years ago
- WMI Shell project : proof-of-concept of remote access to a Windows machine using only the WMI service.☆44Updated 6 years ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- Tweettioc Splunk App☆20Updated 4 years ago
- My conference presentations☆66Updated last year
- A library for fast parse & import of Windows Eventlogs into Elasticsearch.☆85Updated last month
- ☆45Updated 2 years ago
- IcedID Decryption Tool☆28Updated 4 years ago
- Picus Labs☆44Updated 4 years ago
- Kerberos laboratory to better understand and then detecting attack on kerberos☆69Updated 3 years ago
- A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…☆71Updated 3 years ago