carbonblack / excel4-tests
Carbon Black TAU Excel 4 Macro Analysis
☆41Updated last year
Alternatives and similar repositories for excel4-tests:
Users that are interested in excel4-tests are comparing it to the libraries listed below
- Simple PowerShell script to enable process scanning with Yara.☆93Updated 2 years ago
- ☆27Updated 3 years ago
- Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop☆67Updated last week
- Active Directory Purple Team Playbook☆108Updated last year
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆76Updated last year
- ☆87Updated last year
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 3 years ago
- ShellSweeping the evil.☆52Updated 10 months ago
- Blueteam operational triage registry hunting/forensic tool.☆145Updated last year
- Community Tasks/Plans for PlumHound Queueing☆23Updated 2 years ago
- This repo is where I store my Threat Hunting ideas/content☆87Updated last year
- Useful access control entries (ACE) on system access control list (SACL) of securable objects to find potential adversarial activity☆90Updated 3 years ago
- GoldenSAML Attack Libraries and Framework☆73Updated 10 months ago
- Active C&C Detector☆153Updated last year
- Pushes Sysmon Configs☆88Updated 3 years ago
- Automated detection rule analysis utility☆29Updated 2 years ago
- My conference presentations☆66Updated last year
- TA505+ Adversary Simulation☆65Updated 4 years ago
- Active C2 IoCs☆98Updated 2 years ago
- Full of public notes and Utilities☆98Updated 2 months ago
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆93Updated last year
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆165Updated 2 years ago
- Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.☆38Updated last year
- Fraktal's Ransomware Emulator☆102Updated last year
- See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)☆104Updated 2 years ago
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated last year
- Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.☆65Updated 3 years ago
- ☆82Updated 2 years ago
- Hunting Malicious Macros SANS Threathunting Summit 2021 Materials☆39Updated 3 years ago
- A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments☆65Updated 3 years ago