Alternatives and similar repositories for MitreAttack

Users that are interested in MitreAttack are comparing it to the libraries listed below

• Arno0x / WebDavDelivery
  A WebDAV PROPFIND covert channel to deliver payloads
  ☆52Updated 8 years ago
• daniel-infosec / wikipedia-c2
  POC for utilizing wikipedia API for Command and Control
  ☆29Updated 3 years ago
• DanMcInerney / Autobloodhound
  Automatically parses and attacks BloodHound-generated graphs
  ☆42Updated 7 years ago
• OTRF / bloodhound-notebooks
  Notebooks created to attack and secure Active Directory environments
  ☆27Updated 6 years ago
• FuzzySecurity / BH-Arsenal-2019
  SilkETW & SilkService
  ☆40Updated 6 years ago
• tevora-threat / splunk_pentest_app
  splunk_pentest_app
  ☆50Updated 9 years ago
• Ne0nd0g / shellbot
  Slack/Microsoft Teams notification for new Empire/Meterpreter checkins
  ☆25Updated last year
• ChrisAD / ads-payload
  Powershell script which will take any payload and put it in the a bat script which delivers the payload. The payload is delivered using e…
  ☆56Updated last year
• rvrsh3ll / CrypoCurrencyPowerShell
  ☆30Updated 7 years ago
• ConsciousHacker / GreatSCT
  The project is called GreatSCT (Great Scott). GreatSCT is an open source project to generate application white list bypasses. This tool i…
  ☆29Updated 7 years ago
• nccgroup / Royal_APT
  Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research
  ☆53Updated 7 years ago
• khr0x40sh / PowerW0rm
  ☆16Updated 10 years ago
• staaldraad / fastfluxanalysis
  Scripts to detect Fast-Flux and DGA using DNS query responses
  ☆44Updated 8 years ago
• vysecurity / Invoke-ProcessScan
  Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.
  ☆48Updated 8 years ago
• JimmyAstle / Atomic-Parser
  Python parser for Red Canary's Atomic Red Team Yamls
  ☆27Updated 6 years ago
• tasox / LogRM
  LogRM is a post exploitation powershell script which it uses windows event logs to gather information about internal network
  ☆74Updated 6 years ago
• davehardy20 / PoSHBypass
  ☆25Updated 7 years ago
• 0x4D31 / honeyku
  A Heroku-based web honeypot that can be used to create and monitor fake HTTP endpoints (i.e. honeytokens).
  ☆65Updated 6 years ago
• byt3bl33d3r / Invoke-AutoIt
  Loads the AutoIt DLL and PowerShell assemblies into memory and executes the specified keystrokes
  ☆62Updated 8 years ago
• richiercyrus / Bro-Scripts
  A series of Bro Scripts created for detection purposes.
  ☆19Updated 9 years ago
• jipegit / IncidentsMindMaps
  Cybersecurity Incidents Mind Maps
  ☆34Updated 4 years ago
• eset / volatility-browserhooks
  Volatility Framework plugin to detect various types of hooks as performed by banking Trojans
  ☆40Updated 7 years ago
• V1V1 / Sleight
  Empire HTTP(S) C2 redirector setup script
  ☆48Updated 7 years ago
• GoSecure / gophish-cli
  Gophish Python cli to perform huge phishing campaigns
  ☆39Updated 7 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 5 years ago
• r4wd3r / ADPWN
  Useful Windows and AD tools
  ☆15Updated 3 years ago
• d3vzer0 / cnc-relay
  Docker projects to retain beacon source IPs using C2 relaying infra
  ☆11Updated 6 years ago
• mandiant / ioc-scanner-CVE-2019-19781
  Indicator of Compromise Scanner for CVE-2019-19781
  ☆94Updated 5 years ago
• DanMcInerney / SMB-reverse-brute
  Async'ly gather unique usernames thru null SMB sessions and bruteforce them with 2 passwords
  ☆51Updated 8 years ago
• trustedsec / auto_SettingContent-ms
  This is a quick POC for using the Matt Nelson (enigma0x3) technique for generating a malicious .SettingContent-ms extension type for remo…
  ☆54Updated 7 years ago