Alternatives and similar repositories for Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW

Users that are interested in Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW are comparing it to the libraries listed below

• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆44Updated 2 years ago
• ZeroPointSecurity / Domain-Enumeration-Tool
  Perform Windows domain enumeration via LDAP
  ☆36Updated 3 years ago
• georgi-i / winevt_logs_analysis
  Searching .evtx logs for remote connections
  ☆24Updated 2 years ago
• RedTeamOperations / GoogleWorkspaceDirectoryDump
  ☆18Updated 3 years ago
• LuemmelSec / CVE-2023-29357
  ☆52Updated last year
• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 3 years ago
• Gr1mmie / WMIEnum
  WMI SA stuffs
  ☆30Updated 3 years ago
• phackt / wptsextensions.dll
  WptsExtensions.dll for exploiting DLL hijacking of the task scheduler.
  ☆55Updated 4 years ago
• advanced-threat-research / NetLlix
  A project created with an aim to emulate and test exfiltration of data over different network protocols.
  ☆31Updated 2 years ago
• ZarvisD / Azure-AD
  Azure pentesting reference for Altered Security Lab
  ☆24Updated 3 years ago
• outflanknl / RedELK-workshop
  Items related to the RedELK workshop given at security conferences
  ☆29Updated last year
• hyd3sec / MultiThreaded_C2_With_Keylogger
  Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil
  ☆21Updated 2 years ago
• expl0itabl3 / Redsheet
  Red Teaming & Active Directory Cheat Sheet.
  ☆40Updated last year
• Hypnoze57 / RDPChecker
  RDP Checker
  ☆63Updated last year
• RiccardoAncarani / talks
  ☆42Updated 3 years ago
• ceramicskate0 / SharpLeftOvers
  A C# Tool to find left over pentest data for use in your pentest or redteam op. Blue could maybe use to find files to cleanup
  ☆37Updated last year
• mhaskar / DNSKeyGen
  A tool to exchange decryption keys for command and control (C2) beacons and implants through DNS records.
  ☆39Updated 2 years ago
• mobdk / winNoise
  Execute embedded Mimikatz
  ☆13Updated 3 years ago
• knight0x07 / PoC-Malware-TTPs
  PoC-Malware-TTPs
  ☆49Updated 2 years ago
• LOFL-Project / LOFLCAB
  ☆54Updated 7 months ago
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆31Updated 2 years ago
• joeminicucci / RedIra
  A cloud automation system for Red Teams based on Terraform and Ansible
  ☆24Updated 4 years ago
• ps1337 / Lastenzug
  Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level
  ☆26Updated 2 years ago
• sneakid / DC30-PhineasTalk
  Slides for the talk we presented as UniPi at DefCon's Red Team Village
  ☆23Updated 2 years ago
• Flangvik / collector
  Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.
  ☆19Updated 3 years ago
• pgormanDS / hash_spider
  A module for CME that spiders across a domain.
  ☆35Updated 3 years ago
• OtterHacker / LabS4U2Self
  ☆31Updated 2 years ago
• nettitude / SyscallsExtractor
  ☆23Updated 3 years ago
• 0xe7 / Talks
  Talk slides and material
  ☆32Updated last year
• RiccardoAncarani / GPOPowerParser
  A script that parses PowerView's output for GPO analysis. Integrated into bloodhound to find misconfigurations of URA, SMB signing etc
  ☆14Updated 5 years ago