MatthewDemaske/ThreatHuntingStuff external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

MatthewDemaske/ThreatHuntingStuff

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/MatthewDemaske/ThreatHuntingStuff)

Close

MatthewDemaske / ThreatHuntingStuffView on GitHubMore

• External links
• Readme badge

Useful Threat Hunting Stuff

☆32Sep 1, 2020Updated 5 years ago

Alternatives and similar repositories for ThreatHuntingStuff

Users that are interested in ThreatHuntingStuff are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• khr0x40sh / PowerW0rm

  View on GitHub
  ☆16May 6, 2015Updated 10 years ago
• cisagov / pshtt_reporter

  View on GitHub
  Generate HTTPS reports based on scan data
  ☆15Updated this week
• cisagov / lambda_functions

  View on GitHub
  Generate AWS Lambda environment zip files for use by cisagov/domain-scan
  ☆12Oct 11, 2023Updated 2 years ago
• jephthai / NTFSx

  View on GitHub
  NTFSx is a tool for extracting files from an NTFS filesystem that are otherwise inaccessible.
  ☆14Jul 26, 2013Updated 12 years ago
• rvrsh3ll / Word-Doc-Video-Embed-EXE-POC

  View on GitHub
  ☆94Nov 1, 2018Updated 7 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• VDA-Labs / derbycon-binary_ninja

  View on GitHub
  Repo contains code for our DerbyCon 2016 talk comparing Binary Ninja and IDA Pro.
  ☆10Sep 18, 2016Updated 9 years ago
• deroko / activationcontext

  View on GitHub
  ☆16Dec 14, 2017Updated 8 years ago
• Mr-Un1k0d3r / SCT-obfuscator

  View on GitHub
  Cobalt Strike SCT payload obfuscator
  ☆143Jul 7, 2017Updated 8 years ago
• tevora-threat / eternal_blue_powershell

  View on GitHub
  Port of eternal blue exploits to powershell
  ☆151Jun 3, 2017Updated 8 years ago
• matthewdowney / roku

  View on GitHub
  A command line remote for a Roku media box.
  ☆17Apr 10, 2015Updated 11 years ago
• cve-search / CVE-Search-MT

  View on GitHub
  CVE-Search Management Tools - Tools that might be useful for management purposes
  ☆22Oct 7, 2015Updated 10 years ago
• zldww2011 / CVE-2018-0802_POC

  View on GitHub
  Exploit the vulnerability to execute the calculator
  ☆68Jan 11, 2018Updated 8 years ago
• darkquasar / WMI_Persistence

  View on GitHub
  A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics
  ☆88Oct 6, 2017Updated 8 years ago
• 1aN0rmus / vtTracker

  View on GitHub
  Monitor JSON notifications feed from VT
  ☆17Jun 13, 2017Updated 8 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• lkw657 / reversing_slides

  View on GitHub
  ☆20Sep 8, 2019Updated 6 years ago
• ubeeri / Invoke-PWAudit

  View on GitHub
  A PowerShell tool which provides an easy way to check for shared passwords between Windows Active Directory accounts
  ☆32Feb 12, 2019Updated 7 years ago
• peewpw / DomainFrontDiscover

  View on GitHub
  Scripts and results for finding domain frontable CloudFront domains
  ☆54Feb 23, 2018Updated 8 years ago
• vysecurity / morphHTA

  View on GitHub
  morphHTA - Morphing Cobalt Strike's evil.HTA
  ☆527Apr 14, 2023Updated 3 years ago
• cisagov / scanner

  View on GitHub
  Automated pshtt, trustymail, and sslyze scanning
  ☆30Mar 26, 2026Updated 3 weeks ago
• mitre / mitre.github.io

  View on GitHub
  Open Source software from The MITRE Corporation
  ☆26Jun 4, 2024Updated last year
• JoasASantos / Cyber-Security-Contents

  View on GitHub
  ☆14Aug 16, 2021Updated 4 years ago
• swackhamer / vt_notification_puller

  View on GitHub
  VirusTotal Intelligence Notification Puller
  ☆28Jun 29, 2016Updated 9 years ago
• 0x09AL / WordSteal

  View on GitHub
  This script will create a POC that will steal NTML hashes from a remote computer. Do not use this for illegal purposes.The author does no…
  ☆253Sep 27, 2023Updated 2 years ago
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• Ganapati / Firmware_web_rce_finder

  View on GitHub
  FWRF is a open source tool for firmware web-side analysis.
  ☆11Aug 27, 2015Updated 10 years ago
• s0lari / Decoy-sploit

  View on GitHub
  Bunch of honey related items that spoof/decoy powersploit functions.
  ☆18Apr 23, 2020Updated 5 years ago
• whiteHat001 / MIcrosoft-Word-Use-After-Free

  View on GitHub
  ☆16Jul 7, 2020Updated 5 years ago
• bitsofinfo / powershell-command-executor-ui

  View on GitHub
  AngularJS interface and simple Node.js REST api for testing Powershell command execution; built on top of powershell-command-executor and…
  ☆30Feb 23, 2015Updated 11 years ago
• RedSiege / WMIOps

  View on GitHub
  This repo is for WMIOps, a powershell script which uses WMI for various purposes across a network.
  ☆389Jun 25, 2024Updated last year
• dafthack / PowerWebShot

  View on GitHub
  A PowerShell tool for taking screenshots of multiple web servers quickly.
  ☆94Apr 19, 2017Updated 8 years ago
• OVALProject / Test-Content

  View on GitHub
  A set of OVAL Definitions that provides a simple way to test the capability of OVAL Definition Evaluators.
  ☆26Jun 3, 2016Updated 9 years ago
• GoFetchAD / GoFetch

  View on GitHub
  GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.
  ☆634Jun 20, 2017Updated 8 years ago
• bleedx-93 / Spoofi

  View on GitHub
  A simple tool to inject shellcode into the remote process with the ability to spoof parent process.
  ☆16Mar 18, 2021Updated 5 years ago
• Wordpress hosting with auto-scaling - Free Trial • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• mattifestation / DeviceGuardBypassMitigationRules

  View on GitHub
  A reference Device Guard code integrity policy consisting of FilePublisher deny rules for published Device Guard configuration bypasses
  ☆115May 27, 2017Updated 8 years ago
• atktgs / BlackHat2015Arsenal

  View on GitHub
  My Quick Note of BlackHat 2015 Arsenal
  ☆26Aug 13, 2015Updated 10 years ago
• whokilleddb / ClickForClickOnce

  View on GitHub
  ClickForClickOnce - Generate configurable clickonce payloads
  ☆93Oct 10, 2025Updated 6 months ago
• moshekaplan / cyber_training_materials

  View on GitHub
  Training materials I've written.
  ☆11Nov 11, 2025Updated 5 months ago
• 0x4a47 / Sectalks-MEL0x14-CTF

  View on GitHub
  Sectalks MEL0x14 CTF
  ☆38Feb 11, 2018Updated 8 years ago
• Kevin-Robertson / Conveigh

  View on GitHub
  Conveigh is a Windows PowerShell LLMNR/NBNS spoofer detection tool
  ☆96Aug 28, 2016Updated 9 years ago
• Cn33liz / StarFighters

  View on GitHub
  A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.
  ☆321Jun 5, 2017Updated 8 years ago