Alternatives and similar repositories for ATLAS

Users that are interested in ATLAS are comparing it to the libraries listed below

• advanced-threat-research / NetLlix
  A project created with an aim to emulate and test exfiltration of data over different network protocols.
  ☆31Updated 2 years ago
• montysecurity / InfraSpyder
  Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
  ☆28Updated 2 years ago
• NexusFuzzy / raccoon_config
  Scans a list of raccoon servers from Tria.ge and extracts the config
  ☆15Updated 2 years ago
• BinaryDefense / beacon-fronting
  A simple command line program to help defender test their detections for network beacon patterns and domain fronting
  ☆70Updated 3 years ago
• malienist / lupo
  Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
  ☆106Updated 3 years ago
• MalwareTech / FollinaExtractor
  Extract payload URLs from Follina (CVE-2022-30190) docx and rtf files
  ☆31Updated 3 years ago
• shabarkin / pointer
  Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.
  ☆68Updated 3 years ago
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆40Updated 3 weeks ago
• lawiet47 / autoresponder
  Carbon Black Response IR tool
  ☆54Updated 4 years ago
• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆45Updated 2 years ago
• infinitumitlabs / Karakurt-Hacking-Team-CTI
  IOC Data Obtained From Karakurt Hacking Team's Internal Infrastructure
  ☆33Updated 3 years ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 3 years ago
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆61Updated 2 years ago
• DODC / turncoat
  ☆42Updated 6 months ago
• Retrospected / kerbmon
  Continuous kerberoast monitor
  ☆45Updated 2 years ago
• georgi-i / winevt_logs_analysis
  Searching .evtx logs for remote connections
  ☆24Updated 2 years ago
• h4wkst3r / Blackhat-USA-2022-Materials
  Presentation materials for my Black Hat USA 2022 Briefing and Arsenal talks
  ☆64Updated 3 years ago
• freeload101 / Bloodhound-Portable
  Bloodhound Portable for Windows
  ☆52Updated 2 years ago
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆74Updated 3 years ago
• adulau / HHHash
  HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.
  ☆78Updated 2 years ago
• reecdeep / HiveV5_file_decryptor
  Hive v5 file decryption algorithm
  ☆34Updated 2 years ago
• mhaskar / DNSKeyGen
  A tool to exchange decryption keys for command and control (C2) beacons and implants through DNS records.
  ☆39Updated 2 years ago
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆52Updated 2 years ago
• wand3rlust / Hitchhikers-Guide-to-URL-Analysis
  Collection of Tools & Techniques for analyzing URLs
  ☆32Updated 2 years ago
• curated-intel / Initial-Access-Broker-Landscape
  A visualized overview of the Initial Access Broker (IAB) cybercrime landscape
  ☆114Updated 3 years ago
• whichbuffer / Lockbit-Black-3.0
  ☆24Updated 3 years ago
• singe / nthasher
  A fast wordlist to nthash converter
  ☆21Updated 3 years ago
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆39Updated 3 years ago
• jorgeorchilles / presentations
  Slides and materials for conference presentations
  ☆11Updated 2 years ago
• matthw / malware_analysis
  ☆18Updated last year