Alternatives and similar repositories for threathunting

Users that are interested in threathunting are comparing it to the libraries listed below

• cedowens / C2_Cradle
  Tool to download, install, and run macOS capable command & control servers (i.e., C2s with macOS payloads/clients) as docker containers f…
  ☆19Updated 4 years ago
• antman1p / PrintTCCdb
  JXA script for Mythic that prints the TCC.db
  ☆15Updated 4 years ago
• asaurusrex / MachoBins
  ☆15Updated 2 years ago
• attactics / cslogwatch
  Cobalt Strike log state tracking, parsing, and storage
  ☆24Updated 5 years ago
• antman1p / JXA_Proc_Tree
  A JXA script for enumerating running processes, printed out in a json, parent-child tree.
  ☆13Updated 3 years ago
• 0xdeadbeefJERKY / mythic-deploy
  Automated deployment and configuration of a Mythic server using Terraform and Ansible
  ☆9Updated 2 years ago
• WMSR / utils
  ☆11Updated 5 years ago
• curi0usJack / ansible-redelk
  Ansible playbooks for instrumenting a Red Team environment with RedElk
  ☆50Updated 4 years ago
• obscuritylabs / operator-up
  Helpful operator notes and techniques in actionable form
  ☆17Updated last year
• cedowens / Mythic-Macro-Generator
  Python3 script to generate a macro to launch a Mythic payload. Author: Cedric Owens
  ☆47Updated 4 years ago
• rvrsh3ll / HashCant
  Some Hashcat Rules for 2020 and beyond. Contributions encouraged!
  ☆25Updated 3 years ago
• rmdavy / AmsiPEBWalkVBA
  Walking the PEB in VBA
  ☆23Updated 5 years ago
• t94j0 / ansible-role-mythic
  Ansible role that Installs Mythic
  ☆15Updated 11 months ago
• blackarrowsec / Malleable-C2-Profiles
  Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…
  ☆17Updated 4 years ago
• airman604 / schtask_now
  ☆17Updated 6 years ago
• ConsciousHacker / GreatSCT
  The project is called GreatSCT (Great Scott). GreatSCT is an open source project to generate application white list bypasses. This tool i…
  ☆30Updated 7 years ago
• SadProcessor / WatchDog
  BloodHound Data Scanner
  ☆45Updated 4 years ago
• malware-unicorn / macho_shellcode_extractor
  extracts shellcode from a nasm compile macho binary
  ☆16Updated 4 years ago
• upils / redirect-lib
  Library of traffic redirectors
  ☆26Updated 5 years ago
• Raikia / SharpStat
  C# utility that uses WMI to run "cmd.exe /c netstat -n", save the output to a file, then use SMB to read and delete the file remotely
  ☆38Updated 5 years ago
• checkymander / Forerunner
  Automation Engine using the Covenant API and lua scripting
  ☆24Updated 2 years ago
• s0lst1c3 / awae
  ☆16Updated 7 years ago
• FuzzySecurity / BH-Arsenal-2019
  SilkETW & SilkService
  ☆40Updated 5 years ago
• harleyQu1nn / csfm
  Cobalt Strike Field Manual - A quick reference for Windows commands that can be accessed in a beacon console.
  ☆46Updated 7 years ago
• outflanknl / Invoke-Templator
  A PowerShell script to parse the docx/docm file format and update the template location.
  ☆17Updated 5 years ago
• antman1p / freyja
  Freyja is a Golang, Purple Team agent that compiles into Windows, Linux and macOS x64 executables.
  ☆42Updated 7 months ago
• blacklanternsecurity / Convert-Invoke-Kerberoast
  Converts the output from Invoke-Kerberoast into hashcat format.
  ☆32Updated 6 years ago
• FuzzySecurity / DotNetToJScript-LanguageModeBreakout
  ☆26Updated 6 years ago
• chrismaddalena / Fox
  A companion tool for BloodHound offering Active Directory statistics and number crunching
  ☆64Updated 6 years ago
• redcanaryco / wwhf
  Exercises for C# Workshop at Wild West Hackin' Fest 2018 & 2019.
  ☆64Updated 5 years ago