Alternatives and similar repositories for threathunting

Users that are interested in threathunting are comparing it to the libraries listed below

• antman1p / PrintTCCdb
  JXA script for Mythic that prints the TCC.db
  ☆15Updated 4 years ago
• cedowens / C2_Cradle
  Tool to download, install, and run macOS capable command & control servers (i.e., C2s with macOS payloads/clients) as docker containers f…
  ☆19Updated 4 years ago
• obscuritylabs / operator-up
  Helpful operator notes and techniques in actionable form
  ☆17Updated 2 years ago
• fullmetalcache / SharpFiles
  ☆56Updated 5 years ago
• chrismaddalena / Fox
  A companion tool for BloodHound offering Active Directory statistics and number crunching
  ☆65Updated 7 years ago
• cedowens / Mythic-Macro-Generator
  Python3 script to generate a macro to launch a Mythic payload. Author: Cedric Owens
  ☆47Updated 4 years ago
• leoloobeek / keyserver
  Easily serve HTTP and DNS keys for proper payload protection
  ☆59Updated 7 years ago
• PwnDexter / FindFrontableDomains
  Forked and updated with some additional features over the original
  ☆17Updated 4 years ago
• curi0usJack / ansible-redelk
  Ansible playbooks for instrumenting a Red Team environment with RedElk
  ☆52Updated 5 years ago
• ethanhunnt / Hover_with_Power
  This repo is dedicated to a powerpoint exploit
  ☆34Updated 5 years ago
• mvelazc0 / PurpleSpray
  PurpleSpray is an adversary simulation tool that executes password spray behavior under different scenarios and conditions with the purpo…
  ☆51Updated 6 years ago
• checkymander / Forerunner
  Automation Engine using the Covenant API and lua scripting
  ☆24Updated 3 years ago
• 0xthirteen / PowerView3-Aggressor
  Cobalt Strike Aggressor script menu for Powerview/SharpView
  ☆28Updated 6 years ago
• airman604 / schtask_now
  ☆18Updated 6 years ago
• mdsecactivebreach / ANGRYPUPPY
  Bloodhound Attack Path Automation in CobaltStrike
  ☆30Updated 8 years ago
• rvrsh3ll / HashCant
  Some Hashcat Rules for 2020 and beyond. Contributions encouraged!
  ☆26Updated 3 years ago
• asaurusrex / MachoBins
  ☆15Updated 3 years ago
• malware-unicorn / MacOS_VBA_Macro
  Example VBA Macro for MacOS Mojave
  ☆66Updated 7 years ago
• attactics / cslogwatch
  Cobalt Strike log state tracking, parsing, and storage
  ☆24Updated 6 years ago
• asaurusrex / Rubicon
  Caesar-Cipher based encryption
  ☆31Updated 4 years ago
• yoda66 / MalwareDevTalk
  ☆48Updated 5 years ago
• threatexpress / invoke-pipeshell
  SMB Named Pipe shell
  ☆69Updated last year
• IceMoonHSV / Sim
  C# User Simulation
  ☆33Updated 3 years ago
• xFreed0m / Disruption
  Terraform script to deploy AD-based environment on Azure
  ☆41Updated 2 years ago
• its-a-feature / macos-popups
  Catalog Red Team techniques that cause popups in various macOS versions
  ☆15Updated last year
• its-a-feature / Orchard
  JavaScript for Automation (JXA) tool to do Active Directory enumeration.
  ☆105Updated 3 years ago
• dsnezhkov / typhoon
  ☆110Updated 7 years ago
• blacklanternsecurity / Convert-Invoke-Kerberoast
  Converts the output from Invoke-Kerberoast into hashcat format.
  ☆33Updated 7 years ago
• MythicAgents / typhon
  Payload designed for targeting Jamf enrolled devices.
  ☆39Updated 2 years ago
• Coalfire-Research / Vampire
  Vampire is an aggressor script which integrates with BloodHound to mark nodes as owned.
  ☆79Updated 4 years ago