blackorbird / APT_REPORTView external linksLinks
Interesting APT Report Collection And Some Special IOCs
☆2,889Updated this week
Alternatives and similar repositories for APT_REPORT
Users that are interested in APT_REPORT are comparing it to the libraries listed below
Sorting:
- APT & CyberCriminal Campaign Collection☆4,043Jul 25, 2024Updated last year
- Indicators of compromise (IOCs) collected from public resources and categorized by Qi-AnXin.☆959Aug 28, 2025Updated 5 months ago
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆724Dec 26, 2022Updated 3 years ago
- Windows Events Attack Samples☆2,502Jan 24, 2023Updated 3 years ago
- APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the …☆1,400Nov 7, 2024Updated last year
- Small and highly portable detection tests based on MITRE's ATT&CK.☆11,570Updated this week
- Malwoverview is a rapid response tool used to gather intelligence information from VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malsh…☆3,531Jan 20, 2026Updated 3 weeks ago
- YARA signature and IOC database for my scanners and tools☆2,864Feb 5, 2026Updated last week
- A toolset to make a system look as if it was the victim of an APT attack☆2,710Sep 23, 2025Updated 4 months ago
- Red Teaming Tactics and Techniques☆4,487Aug 22, 2024Updated last year
- List of Awesome CobaltStrike Resources☆4,384Sep 20, 2023Updated 2 years ago
- Various public documents, whitepapers and articles about APT campaigns☆3,646Jan 1, 2024Updated 2 years ago
- Defences against Cobalt Strike☆1,293Jul 14, 2022Updated 3 years ago
- Wiki to collect Red Team infrastructure hardening resources☆4,440Oct 1, 2025Updated 4 months ago
- Adversary Emulation Framework☆10,673Updated this week
- ☆1,129Dec 19, 2023Updated 2 years ago
- Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing…☆1,722Jan 16, 2026Updated 3 weeks ago
- Attack and defend active directory using modern post exploitation adversary tradecraft activity☆4,792Jul 29, 2025Updated 6 months ago
- Automation for internal Windows Penetrationtest / AD-Security☆3,639Aug 28, 2025Updated 5 months ago
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,475Jan 12, 2026Updated last month
- Covenant is a collaborative .NET C2 framework for red teamers.☆4,606Jul 18, 2024Updated last year
- generate CobaltStrike's cross-platform payload☆2,540Nov 20, 2023Updated 2 years ago
- ScareCrow - Payload creation framework designed around EDR bypass.☆2,869Aug 18, 2023Updated 2 years ago
- Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…☆1,579May 18, 2021Updated 4 years ago
- Scan files or process memory for CobaltStrike beacons and parse their configuration☆923Aug 19, 2021Updated 4 years ago
- ☆2,169Feb 21, 2023Updated 2 years ago
- Indicators of Compromises (IOC) of our various investigations��☆1,914Jan 30, 2026Updated 2 weeks ago
- Cobalt Strike Malleable C2 Design and Reference Guide☆1,750Dec 13, 2023Updated 2 years ago
- This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.☆10,115Sep 29, 2025Updated 4 months ago
- Extracting Clear Text Passwords from mstsc.exe using API Hooking.☆1,422Jul 20, 2024Updated last year
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆4,452Jul 8, 2025Updated 7 months ago
- Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.☆753Nov 16, 2021Updated 4 years ago
- RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.☆1,562Aug 20, 2024Updated last year
- Investigate malicious Windows logon by visualizing and analyzing Windows event log☆3,049Oct 19, 2025Updated 3 months ago
- Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mand…☆7,529Oct 16, 2025Updated 3 months ago
- Cobalt Strike系列☆2,411Dec 3, 2023Updated 2 years ago
- List of Awesome Red Teaming Resources☆7,746Dec 28, 2023Updated 2 years ago
- Defeating Windows User Account Control☆7,350Jan 11, 2026Updated last month
- Automated Adversary Emulation Platform☆6,733Updated this week