ATT&CK Evaluations Library
☆94Jan 22, 2026Updated last month
Alternatives and similar repositories for ael
Users that are interested in ael are comparing it to the libraries listed below
Sorting:
- ☆14Sep 26, 2023Updated 2 years ago
- Process doppelganging POC using direct system calls, PPID spoofing and dropbox as an external delivery channel for the payload.☆16Jan 7, 2021Updated 5 years ago
- A python polymorphic engine for C programs☆11Dec 8, 2023Updated 2 years ago
- Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…☆57Mar 2, 2026Updated 2 weeks ago
- A bunch of shenanigans using functions, VEH and more☆38Jun 8, 2025Updated 9 months ago
- An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.☆2,077May 28, 2025Updated 9 months ago
- Simple python script for AD enumeration☆31Apr 5, 2021Updated 4 years ago
- go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…☆49Mar 7, 2023Updated 3 years ago
- Integrate IBM QRadar and RPA to automate security L1 tasks.☆14May 20, 2022Updated 3 years ago
- Tools and Binaries to use with KAPE☆13Aug 13, 2019Updated 6 years ago
- Scripts and a short guide for using them to tier an Active Directory. Made for BSides Copenhagen 2024☆39Oct 20, 2025Updated 5 months ago
- AI-Powered, Local Pythonic Coding Agent 🐞💻☆25Mar 3, 2025Updated last year
- Repo to hold mcp server for velociraptor☆32Jul 27, 2025Updated 7 months ago
- ☆13Aug 26, 2024Updated last year
- ☆20Feb 6, 2024Updated 2 years ago
- 记录一下Windows下的Hook技巧☆15Jul 15, 2024Updated last year
- Shellcode Loader using indirect syscalls☆16Jan 21, 2024Updated 2 years ago
- Detection for CVE-2025-61882 & CVE-2025-61884☆36Oct 14, 2025Updated 5 months ago
- Malware Classifier From Network Captures☆82Jan 27, 2017Updated 9 years ago
- Thor Artifacts for Velociraptor☆19Dec 2, 2025Updated 3 months ago
- An automated Adversary Emulation lab with terraform and MCP server. Build Caldera techniques and operations assisted with LLMs. Built f…☆205Nov 23, 2025Updated 3 months ago
- Mentally ill EtwTi parser☆69Jan 11, 2026Updated 2 months ago
- Extracts indicators of compromise (IOCs), including domain names, IPv4 addresses, email addresses, and hashes, from text.☆11Dec 10, 2017Updated 8 years ago
- A Lazy Programmer's Tips for Avoiding the SOC ~ BSides Belfast 2024☆16Sep 12, 2024Updated last year
- TAXII Server supporting the 2.1 spec.☆20Mar 30, 2020Updated 5 years ago
- A proof-of-concept shellcode loader that leverages AI/ML face recognition models to verify the identity of a user on a target system☆43Oct 30, 2024Updated last year
- Storage for the IOCs I collect☆11Mar 26, 2025Updated 11 months ago
- Cobalt Strike notifications via NTFY.☆15Sep 24, 2024Updated last year
- ☆22Mar 18, 2021Updated 5 years ago
- Assorted, MIT licensed, threat hunting rules from @bradleyjkemp☆14Mar 11, 2022Updated 4 years ago
- Some talks about security☆12Nov 20, 2020Updated 5 years ago
- This is repositories with all my ASL scripts☆11Sep 11, 2024Updated last year
- some tools plugins☆14May 24, 2023Updated 2 years ago
- A naive implementation of HERCULE, an attack story reconstruction system using community discovery on correlated log graph☆15Aug 27, 2017Updated 8 years ago
- ☆10Aug 28, 2020Updated 5 years ago
- Convert auditd logs to json format☆10Apr 3, 2019Updated 6 years ago
- Open-source methodology on pentesting and risk mitigation☆14Oct 20, 2020Updated 5 years ago
- EPSScall☆11Jun 10, 2022Updated 3 years ago
- An IntelliJ plugin for RPM SPEC file support☆12Jul 28, 2025Updated 7 months ago