carbonblack / excel4-tests
Carbon Black TAU Excel 4 Macro Analysis
☆40Updated last year
Alternatives and similar repositories for excel4-tests:
Users that are interested in excel4-tests are comparing it to the libraries listed below
- Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop☆67Updated last week
- ☆26Updated 3 years ago
- Community Tasks/Plans for PlumHound Queueing☆23Updated 2 years ago
- GoldenSAML Attack Libraries and Framework☆70Updated 9 months ago
- Simple PowerShell script to enable process scanning with Yara.☆93Updated 2 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆76Updated last year
- ShellSweeping the evil.☆52Updated 9 months ago
- A home for detection content developed by the delivr.to team☆67Updated last month
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 3 years ago
- Fraktal's Ransomware Emulator☆102Updated 11 months ago
- TA505+ Adversary Simulation☆65Updated 4 years ago
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆165Updated 2 years ago
- ☆25Updated 2 years ago
- This repo is where I store my Threat Hunting ideas/content☆87Updated last year
- Pushes Sysmon Configs☆88Updated 3 years ago
- Active Directory Purple Team Playbook☆106Updated last year
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated 11 months ago
- ☆69Updated 3 years ago
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆93Updated last year
- Automated detection rule analysis utility☆29Updated 2 years ago
- PS-TrustedDocuments: PowerShell script to handle information on trusted documents for Microsoft Office☆35Updated 2 years ago
- Active C&C Detector☆153Updated last year
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.☆65Updated 3 months ago
- Full of public notes and Utilities☆98Updated last month
- My conference presentations☆66Updated last year
- Useful access control entries (ACE) on system access control list (SACL) of securable objects to find potential adversarial activity☆90Updated 3 years ago
- ☆83Updated 2 years ago
- ☆44Updated last year
- Machine Interrogation To Identify Gaps & Techniques for Execution☆32Updated 2 years ago