Alternatives and similar repositories for public-threats:

Users that are interested in public-threats are comparing it to the libraries listed below

• markgamache / GPOwn
  Do the unexpected with AD GPO processing
  ☆9Updated 5 years ago
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆15Updated 4 years ago
• knavesec / EyeWitnessTheFitness
  Exactly what it sounds like, which is something rad
  ☆22Updated 2 years ago
• nccgroup / UninstalledAppCanary
  A Canary which fires when uninstalled
  ☆34Updated 4 years ago
• ahhh / presentations
  various slides and presentations I've worked on
  ☆18Updated 2 weeks ago
• 1d8 / tempinject
  ☆20Updated 4 years ago
• automate-tim / conference-materials
  Speaking materials from conferences I've given
  ☆9Updated 2 years ago
• Truvis / SyscallExtractorAnalyzer
  This script will pull and analyze syscalls in given application(s) allowing for easier security research purposes
  ☆21Updated 4 years ago
• r4wd3r / ADPWN
  Useful Windows and AD tools
  ☆15Updated 3 years ago
• 001SPARTaN / SaltedCaramel
  Apfell implant written in C#.
  ☆8Updated 4 years ago
• nccgroup / encoderama
  String or worldlist encoder for use in fuzzing or web application testing
  ☆18Updated 5 years ago
• rvrsh3ll / SharpSSDP
  SSDP Service Discovery
  ☆16Updated 6 years ago
• LaresLLC / AzureTokenExtractor
  Extracts Azure authentication tokens from PowerShell process minidumps.
  ☆23Updated last year
• jymcheong / aptc
  Automated Payload Test Controller
  ☆9Updated 7 years ago
• jfmaes / Parsers
  parsers to make life easier
  ☆12Updated 4 years ago
• PwnDexter / FindFrontableDomains
  Forked and updated with some additional features over the original
  ☆16Updated 4 years ago
• dozernz / bugstropics
  Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk
  ☆9Updated 2 years ago
• matterpreter / getDA.sh
  Identify common attack paths to get Domain Administrator
  ☆22Updated 5 years ago
• G0ldenGunSec / wmiServSessEnum
  .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems
  ☆33Updated 5 years ago
• BishopFox / sonicrack
  Decrypt encrypted SonicOSX firmware images
  ☆13Updated last month
• rmdavy / AmsiPEBWalkVBAx64
  ☆14Updated 4 years ago
• bohops / IISAppPoolCreds
  Retrieve the IIS Application Pool Credentials. Relies on the WebAdministration PowerShell Module.
  ☆14Updated 7 years ago
• SneakyNachos / MalwareAnalysisTraining
  Work in Progress repo
  ☆14Updated 5 years ago
• mubix / lmo
  LetMeOutOfYour.net Resources
  ☆20Updated 4 years ago
• shlyuz / implant_go
  Golang Shlyuz Implant Implementation
  ☆12Updated 2 years ago
• 2igosha / sunburst_dga
  ☆22Updated 4 years ago
• two06 / EvtMute
  Apply a filter to the events being reported by windows event logging
  ☆15Updated 4 years ago
• fastlorenzo / redelk-kibana-app
  Kibana app for RedELK
  ☆16Updated 2 years ago
• gquere / PulseSecure_session_hijacking
  Attacking and defending web and VPN session hijacking in Pulse Secure Connect
  ☆14Updated 5 years ago
• MohitDabas / sastgriper
  A simple grep user interface for searching code which can be used for SAST.
  ☆8Updated 5 years ago