carbonblack / excel4-testsLinks
Carbon Black TAU Excel 4 Macro Analysis
☆42Updated last year
Alternatives and similar repositories for excel4-tests
Users that are interested in excel4-tests are comparing it to the libraries listed below
Sorting:
- GoldenSAML Attack Libraries and Framework☆73Updated last year
- Simple PowerShell script to enable process scanning with Yara.☆94Updated 2 years ago
- ☆27Updated 4 years ago
- Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop☆68Updated last month
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆73Updated 3 years ago
- Community Tasks/Plans for PlumHound Queueing☆23Updated 2 years ago
- Yara Rules for Modern Malware☆77Updated last year
- TA505+ Adversary Simulation☆65Updated 4 years ago
- Fraktal's Ransomware Emulator☆102Updated last year
- My conference presentations☆66Updated last year
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆79Updated last month
- PS-TrustedDocuments: PowerShell script to handle information on trusted documents for Microsoft Office☆35Updated 2 years ago
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆167Updated 2 years ago
- ☆83Updated 2 years ago
- ☆87Updated last year
- See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)☆105Updated 2 years ago
- ShellSweeping the evil.☆53Updated last year
- Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.☆66Updated 3 years ago
- Pushes Sysmon Configs☆88Updated 4 years ago
- Active Directory Purple Team Playbook☆108Updated 2 years ago
- Hunting Malicious Macros SANS Threathunting Summit 2021 Materials☆39Updated 3 years ago
- Blueteam operational triage registry hunting/forensic tool.☆148Updated 2 years ago
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆95Updated last year
- ☆54Updated 10 months ago
- A home for detection content developed by the delivr.to team☆69Updated 3 weeks ago
- YARA rule analyzer to improve rule quality and performance☆102Updated 2 months ago
- Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.☆38Updated last year
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆60Updated 2 years ago
- A library for fast parse & import of Windows Eventlogs into Elasticsearch.☆85Updated this week
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago