Alternatives and similar repositories for Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW:

Users that are interested in Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW are comparing it to the libraries listed below

• RedTeamOperations / GoogleWorkspaceDirectoryDump
  ☆16Updated 2 years ago
• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆44Updated last year
• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 2 years ago
• hyd3sec / MultiThreaded_C2_With_Keylogger
  Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil
  ☆21Updated 2 years ago
• ZeroPointSecurity / Domain-Enumeration-Tool
  Perform Windows domain enumeration via LDAP
  ☆36Updated 2 years ago
• georgi-i / winevt_logs_analysis
  Searching .evtx logs for remote connections
  ☆23Updated last year
• ZarvisD / Azure-AD
  Azure pentesting reference for Altered Security Lab
  ☆24Updated 3 years ago
• 8com / bloodhound-adAnalysis
  Automation of Active Directory penetration testing tasks on top of BloodHound CE
  ☆34Updated last year
• advanced-threat-research / NetLlix
  A project created with an aim to emulate and test exfiltration of data over different network protocols.
  ☆31Updated 2 years ago
• expl0itabl3 / Redsheet
  Red Teaming & Active Directory Cheat Sheet.
  ☆40Updated last year
• LuemmelSec / CVE-2023-29357
  ☆52Updated last year
• AlrikRr / ActiveDirectory_Lab
  Active DIrectory Lab for Pentesting Practice
  ☆24Updated 2 years ago
• phackt / wptsextensions.dll
  WptsExtensions.dll for exploiting DLL hijacking of the task scheduler.
  ☆52Updated 3 years ago
• heartburn-dev / PKI-Escalate
  Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…
  ☆25Updated last year
• RedTeamOperations / GCPTokenReuse
  ☆17Updated 2 years ago
• AlteredSecurity / RBCD
  Script written in python to perform Resource-Based Constrained Delegation (RBCD) attack by leveraging Impacket toolkit.
  ☆20Updated 3 years ago
• 4ndr34z / prenum
  ☆26Updated last year
• sneakid / DC30-PhineasTalk
  Slides for the talk we presented as UniPi at DefCon's Red Team Village
  ☆23Updated 2 years ago
• 0xMrNiko / Cobalt-Strike-Cheat-Sheet
  ☆22Updated 3 years ago
• LOFL-Project / LOFLCAB
  ☆51Updated 3 months ago
• joeminicucci / RedIra
  A cloud automation system for Red Teams based on Terraform and Ansible
  ☆24Updated 3 years ago
• OtterHacker / LabS4U2Self
  ☆30Updated 2 years ago
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆39Updated 2 years ago
• outflanknl / RedELK-workshop
  Items related to the RedELK workshop given at security conferences
  ☆28Updated last year
• crisprss / magicNetdefs
  Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…
  ☆49Updated 2 years ago
• Tylous / Slides
  ☆37Updated 10 months ago
• fozavci / TradecraftDevelopment-Fundamentals
  Tradecraft Development Fundamentals
  ☆40Updated 3 years ago
• aaaddress1 / xlsGen
  (PoC) Tiny Excel BIFF8 Generator, to Embedded 4.0 Macros in xls files without Excel.
  ☆42Updated 3 years ago
• maliciousgroup / GOADvSphere
  A vSphere deployment of GOADv2 BETA Testing (v0.1)
  ☆26Updated last year
• RiccardoAncarani / GPOPowerParser
  A script that parses PowerView's output for GPO analysis. Integrated into bloodhound to find misconfigurations of URA, SMB signing etc
  ☆13Updated 5 years ago