OTRF / BHEU22-ADFS
Writing Your Own Ticket to the Cloud Like APT: A Deep-dive to AD FS Attacks, Detections, and Mitigations
☆12Updated last year
Related projects ⓘ
Alternatives and complementary repositories for BHEU22-ADFS
- ☆31Updated 2 years ago
- The repository accompanying the Buer Emulation workshop☆23Updated 3 years ago
- ☆21Updated last year
- Rapidly building a Windows 10 system to use for dynamic malware analysis (sandbox), sending data to Elastic Cloud.☆41Updated last year
- Defeating Anti-Debugging Techniques for Malware Analysis☆13Updated 2 years ago
- Continuous kerberoast monitor☆43Updated last year
- Quickly search for references to a GUID in DLLs, EXEs, and drivers☆59Updated 2 years ago
- Symantec EDR Internals☆25Updated 3 years ago
- Identifies metadata of .NET binary files.☆21Updated 7 months ago
- A collection of my presentation materials.☆16Updated 6 months ago
- Modular malware analysis artifact collection and correlation framework☆52Updated 6 months ago
- Extension functionality for the NightHawk operator client☆26Updated last year
- Playing with PE's and Building Structures by Hand☆22Updated 2 years ago
- ☆44Updated last year
- ☆18Updated 7 months ago
- Triaging Windows event logs based on SANS Poster☆37Updated last year
- ☆12Updated 2 years ago
- ☆34Updated last year
- ☆13Updated 6 months ago
- A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.☆21Updated 3 months ago
- Just another useless C2 occupying space in some HDD somewhere.☆19Updated last year
- CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"☆46Updated 2 years ago
- AMSI detection PoC☆30Updated 4 years ago
- ☆35Updated 5 months ago
- GoLang package for creating Mythic Payload Types, C2 Profiles, Translation Services, WebHook listeners, and Loggers☆17Updated last week
- My Malware Analysis Reports☆17Updated 2 years ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆30Updated 2 years ago