carbonblack / excel4-testsLinks
Carbon Black TAU Excel 4 Macro Analysis
☆43Updated last year
Alternatives and similar repositories for excel4-tests
Users that are interested in excel4-tests are comparing it to the libraries listed below
Sorting:
- Simple PowerShell script to enable process scanning with Yara.☆95Updated 2 years ago
- Fraktal's Ransomware Emulator☆102Updated last year
- Active Directory Purple Team Playbook☆110Updated 2 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆80Updated 2 months ago
- Pushes Sysmon Configs☆88Updated 4 years ago
- A collection of Powershell scripts that will help automate the build process for a Marvel domain.☆147Updated last year
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆169Updated 2 years ago
- Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop☆68Updated this week
- Blueteam operational triage registry hunting/forensic tool.☆149Updated 2 years ago
- A home for detection content developed by the delivr.to team☆69Updated 2 weeks ago
- Active C&C Detector☆155Updated last year
- ShellSweeping the evil.☆53Updated last year
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆95Updated 2 weeks ago
- My conference presentations☆74Updated this week
- Community Tasks/Plans for PlumHound Queueing☆23Updated 2 years ago
- Active C2 IoCs☆99Updated 2 years ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆73Updated 3 years ago
- Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.☆38Updated last year
- ☆25Updated 2 years ago
- Useful access control entries (ACE) on system access control list (SACL) of securable objects to find potential adversarial activity☆93Updated 3 years ago
- A collection of tools to interact with Microsoft Security Response Center API☆99Updated last year
- Full of public notes and Utilities☆127Updated 5 months ago
- GoldenSAML Attack Libraries and Framework☆73Updated last year
- A repository that maps API calls to Sysmon Event ID's.☆122Updated 2 years ago
- See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)☆104Updated 2 years ago
- This repo is where I store my Threat Hunting ideas/content☆88Updated 2 years ago
- A Python package is used to execute Atomic Red Team tests (Atomics) across multiple operating system environments.☆134Updated last year
- Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.☆67Updated 3 years ago
- Automated detection rule analysis utility☆29Updated 2 years ago