ashemery / Anti-Forensics

Related projects ⓘ

Alternatives and complementary repositories for Anti-Forensics

• sensepost / mydumbedr
  ☆105Updated 9 months ago
• georgesotiriadis / MalwareDev
  ☆82Updated 2 years ago
• RussianPanda95 / Yara-Rules
  Repository of Yara Rules
  ☆88Updated last month
• jaredcatkinson / MalwareMorphology
  ☆76Updated 6 months ago
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆143Updated 6 months ago
• itaymigdal / LOLSpoof
  An interactive shell to spoof some LOLBins command line
  ☆180Updated 9 months ago
• nasbench / Misc-Research
  A collection of tools, scripts and personal research
  ☆113Updated 4 months ago
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆35Updated 3 years ago
• eric-conrad / c2-talk
  ☆36Updated 7 months ago
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆72Updated 2 months ago
• synacktiv / DLHell
  Local & remote Windows DLL Proxying
  ☆161Updated 5 months ago
• lewiswigmore / Virus.xcheck
  Virus.xcheck is a Python tool designed to bulk verify the existence of file hashes in the Virus Exchange database and fetch download URLs…
  ☆46Updated 11 months ago
• OtterHacker / Hooker
  ☆98Updated 3 weeks ago
• TierZeroSecurity / edr_blocker
  Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…
  ☆139Updated 3 months ago
• dr4k0nia / tooling-playground
  A collection of small scripts and tools for deobfuscation and malware analysis.
  ☆65Updated last year
• jconwell / secret_handshake
  A prototype malware C2 channel using x509 certificates over mTLS
  ☆146Updated 8 months ago
• SafeBreach-Labs / DoubleDrive
  A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files
  ☆123Updated 5 months ago
• ghostpepper108 / Evasion
  ☆105Updated last year
• dodo-sec / Malware-Analysis
  ☆130Updated last year
• maliciousgroup / C2_Automation
  C2 Automation using Linode
  ☆78Updated 2 years ago
• OmriBaso / BesoToken
  A tool to Impersonate logged on users without touching LSASS (Including non-Interactive sessions).
  ☆93Updated last year
• SaadAhla / PSpersist
  Dropping a powershell script at %HOMEPATH%\Documents\WindowsPowershell\ , that contains the implant's path , and whenever powershell pro…
  ☆84Updated last year
• rtfmkiesel / loldrivers-client
  Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
  ☆79Updated 9 months ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆110Updated last year
• S3N4T0R-0X0 / APT28-Adversary-Simulation
  This is a simulation of attack by Fancy Bear group (APT28) targeting high-ranking government officials Western Asia and Eastern Europe
  ☆30Updated 5 months ago
• floesen / EventLogCrasher
  ☆181Updated 9 months ago
• FuzzySecurity / BHUSA-2023
  ☆103Updated 4 months ago
• cocomelonc / bsprishtina-2024-maldev-workshop
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆61Updated 3 weeks ago
• CICADA8-Research / MyMSIAnalyzer
  Analyse MSI files for vulnerabilities
  ☆109Updated 2 months ago
• SafeBreach-Labs / MagicDot
  A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue
  ☆95Updated 7 months ago