AntiVE-BehaviorWatch is an advanced behavioral analysis malware that detects automated analysis systems through real-time mouse movement pattern recognition. Leveraging GRU neural networks, it provides high-accuracy classification of user behavior while identifying potential virtual machine, sandbox, or emulation environments.
☆18Jul 12, 2026Updated this week
Alternatives and similar repositories for AntiVE-BehaviorWatch
Users that are interested in AntiVE-BehaviorWatch are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Red Team Coin for crypto-mining operations.☆25Mar 1, 2026Updated 4 months ago
- NØW is a word-based shellcode encoding and obfuscation tool that transforms raw shellcode bytes into natural-looking English prose.☆68Jun 24, 2026Updated 2 weeks ago
- Easy to use, open-source infrastructure management platform, crafted specifically for red team engagements.☆109Feb 16, 2026Updated 4 months ago
- open source implementation of the UDC2 spec used in Cobalt Strike☆54Jul 4, 2026Updated last week
- A python script that automates a C2 Profile build☆48Dec 14, 2025Updated 7 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- A library to parse, modify, and implement Malleable C2 profiles☆27Feb 9, 2019Updated 7 years ago
- Parses logs created by Cobalt Strike, Brute Ratel, OC2 and creates an SQLite DB which can be used to create custom reports.☆31Jul 4, 2026Updated last week
- Lurker is a cross-platform, companion implant to Cobalt Strike built with Go☆33Mar 27, 2026Updated 3 months ago
- A New Exploitation Technique for Visual Studio Projects☆13Nov 5, 2023Updated 2 years ago
- Cobalt Strike BOF☆58Dec 10, 2025Updated 7 months ago
- Your Skyfall Infrastructure Pack☆100Jul 1, 2026Updated last week
- A simple web viewer for TruffleHog JSON output.☆20Jan 7, 2026Updated 6 months ago
- Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources☆13Jun 24, 2018Updated 8 years ago
- Aggressor script that gets the latest commands from CobaltStrikes web site and creates an aggressor script based on tool options.☆23Oct 6, 2021Updated 4 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Rainbow table generation & lookup tools.☆34Dec 17, 2025Updated 6 months ago
- Scripts to interact with Microsoft Graph APIs☆46Nov 7, 2024Updated last year
- One-header configurable C++20 COFF loader☆21Jul 21, 2025Updated 11 months ago
- Situational Awareness script to identify how and where to run implants☆70Dec 6, 2024Updated last year
- MCP Server for Cobalt Strike interaction.☆36Jul 7, 2026Updated last week
- A collection of sample code used in some experiments with Sliver C2☆17Mar 28, 2023Updated 3 years ago
- Docker container for running CobaltStrike 4.10☆38Sep 18, 2024Updated last year
- Advanced EDR Evasion via AI Telemetry Spoofing & WASM Sandboxing. Project Onyx is a PoC Red Team pipeline designed to demonstrate advance…☆113Jun 30, 2026Updated 2 weeks ago
- Reports on Driver, LSASS and other security services mitigations☆35Aug 18, 2025Updated 10 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- A collection of scripts used to support an OffSecOps pipeline.☆15Jan 31, 2021Updated 5 years ago
- The cActiveDirectorySecurity module contains PowerShell Functions which are designed to report on and manipulate Access Control Lists on …☆11Aug 31, 2018Updated 7 years ago
- An easy way to convert BloodHound output files into data that can be imported into reporting software like Dradis and Plextrac. Built by …☆20Oct 15, 2020Updated 5 years ago
- GrizzlyTunnel is a automation script designed to create seamless Layer 3 VPN like tunnels over SSH.☆27Dec 18, 2024Updated last year
- Standalone Cobalt Strike operation logging Aggressor script for Ghostwriter 2.0+☆39Dec 1, 2025Updated 7 months ago
- Unix Process hollowing in rust☆22Dec 16, 2024Updated last year
- ☆16Jun 15, 2025Updated last year
- Attack Active Directory Trusts with a single tool☆14Jan 15, 2025Updated last year
- Maltego Local Transforms for truepeoplesearch.com☆12Jun 5, 2017Updated 9 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Identify common attack paths to get Domain Administrator☆21Aug 20, 2019Updated 6 years ago
- An MCP server for procmon☆45Jun 23, 2026Updated 3 weeks ago
- ☆48Dec 21, 2025Updated 6 months ago
- Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird …☆15Feb 13, 2024Updated 2 years ago
- Encrypt any C# binary or bin file☆12Aug 1, 2024Updated last year
- WasmForge — compile Go and C# programs to single-binary, WASM-sandboxed native executables with polymorphic output.☆99Jun 24, 2026Updated 2 weeks ago
- YesMan☆22Nov 8, 2023Updated 2 years ago