activeshadow / go-atomicredteam

Related projects: ⓘ

• intelforge / tmc
  Threat Mapping Catalogue
  ☆17Updated 3 years ago
• mitre / sandcat
  A CALDERA plugin
  ☆63Updated 7 months ago
• olafhartong / detection-sources
  ☆52Updated 5 years ago
• BinaryDefense / beacon-fronting
  A simple command line program to help defender test their detections for network beacon patterns and domain fronting
  ☆65Updated 2 years ago
• cyware-labs / Threat-Response-Docker
  ☆43Updated last year
• audibleblink / bothan
  Is this IP a C2 server?
  ☆27Updated 4 years ago
• Th1ru-M / Windows-Threat-Hunting
  Hunt for Keywords , Mutex, Windows Event,Registry Keys,Process,Schedule tasks in Windows Machine
  ☆22Updated 3 years ago
• jipegit / IncidentsMindMaps
  Cybersecurity Incidents Mind Maps
  ☆32Updated 2 years ago
• NVISOsecurity / sigma-public
  Generic Signature Format for SIEM Systems
  ☆17Updated last year
• nccgroup / pybeacon
  A collection of scripts for dealing with Cobalt Strike beacons in Python
  ☆167Updated 3 years ago
• rapid7 / insightconnect-workflows
  ☆25Updated this week
• YossiSassi / Get-NetSessionEnum
  Automate Network sessions enumeration of connected users in the domain, to facilitate AD Reconnaissance for Adversary simulation & Red Te…
  ☆15Updated 3 years ago
• mitre-attack / joystick
  Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…
  ☆64Updated last year
• markuskont / pikksilm
  Look into EDR events from network
  ☆23Updated 5 months ago
• fatihsirin / Tweettioc-Splunk-App
  Tweettioc Splunk App
  ☆20Updated 4 years ago
• citronneur / kerlab
  Kerberos laboratory to better understand and then detecting attack on kerberos
  ☆67Updated 3 years ago
• carbonblack / active_c2_ioc_public
  Active C2 IoCs
  ☆96Updated last year
• djhohnstein / cliProxy
  Proxy Unix applications in the terminal
  ☆113Updated 3 years ago
• Cymmetria / weblogic_honeypot
  WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the Oracle WebLogic Server component of Oracle Fusion Middlew…
  ☆31Updated 4 years ago
• OTRF / bloodhound-notebook
  BloodHound Cypher Queries Ported to a Jupyter Notebook
  ☆53Updated 4 years ago
• praetorian-inc / slack-c2bot
  Slack C2bot that executes commands and returns the output.
  ☆44Updated last year
• cisagov / ansible-role-cobalt-strike
  An Ansible role for installing Cobalt Strike.
  ☆73Updated last month
• mitre-attack / attack-evals
  ATT&CK Evaluations website (DEPRECATED)
  ☆59Updated 3 years ago
• StefanKelm / yara-rules
  Links to malware-related YARA rules
  ☆14Updated last year
• b3n-j4m1n / Red-Terroir
  Terraform resources for building HTTP, DNS, phishing, and mail server red team infrastructure
  ☆93Updated 5 years ago
• claroty / CVE2020-0796
  CVE2020-0796 SMBv3 RCE
  ☆60Updated 4 years ago
• PCsXcetra / DerbyCon-2019Files
  This is a group of tools that I was planning on releasing During Derbycon 2019 talk if it was accepted or with a blogpost if not.
  ☆43Updated 3 years ago
• mitre / atomic
  A CALDERA plugin
  ☆33Updated last month
• scythe-io / compound-actions
  ☆39Updated this week
• tsale / TA_tooling
  ☆10Updated last year