activeshadow / go-atomicredteam
go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https://github.com/redcanaryco/atomic-red-team).
☆45Updated last year
Related projects: ⓘ
- Threat Mapping Catalogue☆17Updated 3 years ago
- A CALDERA plugin☆63Updated 7 months ago
- ☆52Updated 5 years ago
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆65Updated 2 years ago
- ☆43Updated last year
- Is this IP a C2 server?☆27Updated 4 years ago
- Hunt for Keywords , Mutex, Windows Event,Registry Keys,Process,Schedule tasks in Windows Machine☆22Updated 3 years ago
- Cybersecurity Incidents Mind Maps☆32Updated 2 years ago
- Generic Signature Format for SIEM Systems☆17Updated last year
- A collection of scripts for dealing with Cobalt Strike beacons in Python☆167Updated 3 years ago
- ☆25Updated this week
- Automate Network sessions enumeration of connected users in the domain, to facilitate AD Reconnaissance for Adversary simulation & Red Te…☆15Updated 3 years ago
- Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…☆64Updated last year
- Look into EDR events from network☆23Updated 5 months ago
- Tweettioc Splunk App☆20Updated 4 years ago
- Kerberos laboratory to better understand and then detecting attack on kerberos☆67Updated 3 years ago
- Active C2 IoCs☆96Updated last year
- Proxy Unix applications in the terminal☆113Updated 3 years ago
- WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the Oracle WebLogic Server component of Oracle Fusion Middlew…☆31Updated 4 years ago
- BloodHound Cypher Queries Ported to a Jupyter Notebook☆53Updated 4 years ago
- Slack C2bot that executes commands and returns the output.☆44Updated last year
- An Ansible role for installing Cobalt Strike.☆73Updated last month
- ATT&CK Evaluations website (DEPRECATED)☆59Updated 3 years ago
- Links to malware-related YARA rules☆14Updated last year
- Terraform resources for building HTTP, DNS, phishing, and mail server red team infrastructure☆93Updated 5 years ago
- CVE2020-0796 SMBv3 RCE☆60Updated 4 years ago
- This is a group of tools that I was planning on releasing During Derbycon 2019 talk if it was accepted or with a blogpost if not.☆43Updated 3 years ago
- A CALDERA plugin☆33Updated last month
- ☆39Updated this week
- ☆10Updated last year