cedowens / C2-JARM
A list of JARM hashes for different ssl implementations used by some C2/red team tools.
☆136Updated last year
Related projects: ⓘ
- Active C2 IoCs☆96Updated last year
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆162Updated last year
- Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.☆65Updated 2 years ago
- Further investigation in to APT campaigns disclosed by private security firms and security agencies☆76Updated 2 years ago
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆65Updated 2 years ago
- Cobalt Strike Beacon configuration extractor and parser.☆142Updated 3 years ago
- Open Dataset of Cobalt Strike Beacon metadata (2018-2022)☆122Updated 2 years ago
- ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabili…☆170Updated 2 weeks ago
- ☆75Updated 3 weeks ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 2 years ago
- Carbon Black TAU Excel 4 Macro Analysis☆36Updated 7 months ago
- ☆42Updated last year
- My conference presentations☆66Updated 10 months ago
- Blueteam operational triage registry hunting/forensic tool.☆142Updated last year
- Zuthaka is an open source application designed to assist red-teaming efforts, by simplifying the task of managing different APTs and othe…☆174Updated last year
- A collection of scripts for dealing with Cobalt Strike beacons in Python☆167Updated 3 years ago
- Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation☆104Updated 2 years ago
- attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage☆110Updated last year
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆74Updated 2 years ago
- Carbon Black Response IR tool☆53Updated 3 years ago
- ☆37Updated this week
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆57Updated last year
- ☆84Updated 7 months ago
- Determine the Palo Alto PAN-OS software version of a remote GlobalProtect portal or management interface.☆118Updated 2 months ago
- Valhalla API Client☆62Updated last year
- YARA rule analyzer to improve rule quality and performance☆93Updated 9 months ago
- Because phishtank was taken.. explore phishing kits in a contained environment!☆43Updated 2 years ago
- ☆161Updated last year
- ☆68Updated 2 years ago
- Project for identifying executables that have command-line options that can be obfuscated, possibly bypassing detection rules.☆136Updated 3 years ago