MalwareTech / CitrixHoneypotLinks
Detect and log CVE-2019-19781 scan and exploitation attempts.
☆115Updated 5 years ago
Alternatives and similar repositories for CitrixHoneypot
Users that are interested in CitrixHoneypot are comparing it to the libraries listed below
Sorting:
- Simulating Adversary Operations☆93Updated 7 years ago
- ☆169Updated 5 years ago
- Responsive Command and Control System☆103Updated 2 years ago
- Linux Local Privesc Helper and Agent☆166Updated 5 years ago
- Pypykatz server☆125Updated 6 years ago
- A malware analysis and classification tool.☆190Updated 3 years ago
- A collection of scripts I've written to help red and blue teams with malware persistence techniques.☆127Updated 7 years ago
- Miscellaneous Malware RE☆196Updated 3 years ago
- Slides from my talk in "Hackinparis" 2019 edition☆91Updated 5 years ago
- All the IOC's I have gathered which are used directly involved coronavirus / covid-19 / SARS-CoV-2 cyber attack campaigns☆65Updated 4 years ago
- A toolkit for Security Researchers☆127Updated 5 years ago
- A simple tool which could be useful to identify the exploits afflicting a Windows OS☆126Updated last year
- Slides from various talks that I've given over the years☆118Updated last year
- ☆283Updated 7 years ago
- Toolset for research malware and Cobalt Strike beacons☆211Updated 2 months ago
- All materials from our Black Hat 2018 "Subverting Sysmon" talk☆135Updated 6 years ago
- Valhalla API Client☆70Updated 2 years ago
- A tool designed to traverse phishing URL paths to search for phishing kit source code.☆90Updated 2 years ago
- Dashboarding and Tooling front-end for PowerShell Empire using PowerShell Universal Dashboard☆104Updated 6 years ago
- ☆54Updated 4 years ago
- Mailpl0it is a small utility that hunts the homepage of exploit-db looking for user supplied quer(y/ies) and notifies the user via email …☆31Updated 2 years ago
- Automated Tactics Techniques & Procedures☆255Updated 2 years ago
- A traffic analyzer to evade Empire's communication from Anomaly-Based IDS☆109Updated 6 years ago
- DEFCON 27 slides and workshop materials.☆127Updated 4 years ago
- SEC599 supporting GitHub repository☆16Updated 5 years ago
- GreyNoise Query Language☆82Updated 6 years ago
- A little tool for detecting suspicious privileged NTLM connections, in particular Pass-The-Hash attack, based on event viewer logs.☆170Updated 3 months ago
- A simple python tool based on Impacket that tests servers for various known NTLM vulnerabilities☆204Updated 4 years ago
- A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…☆71Updated 3 years ago
- Creates dictionaries based on Wikipedia titles☆61Updated 5 years ago