cedowens / C2-JARMLinks
A list of JARM hashes for different ssl implementations used by some C2/red team tools.
☆140Updated 2 years ago
Alternatives and similar repositories for C2-JARM
Users that are interested in C2-JARM are comparing it to the libraries listed below
Sorting:
- Active C2 IoCs☆99Updated 2 years ago
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆167Updated 2 years ago
- Open Dataset of Cobalt Strike Beacon metadata (2018-2022)☆125Updated 3 years ago
- Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.☆66Updated 3 years ago
- ☆45Updated 2 years ago
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆69Updated 3 years ago
- YARA rule analyzer to improve rule quality and performance☆102Updated 3 months ago
- attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage☆113Updated 2 years ago
- Further investigation in to APT campaigns disclosed by private security firms and security agencies☆86Updated 3 years ago
- Cobalt Strike Beacon configuration extractor and parser.☆154Updated 3 years ago
- ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabili…☆177Updated last month
- ☆27Updated 4 years ago
- Blueteam operational triage registry hunting/forensic tool.☆148Updated 2 years ago
- See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)☆104Updated 2 years ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆73Updated 3 years ago
- Random hunting ordiented yara rules☆97Updated 2 years ago
- Get intelligence info (tags, mitre techniques, yara and more) and find similar malware in a fast and easy way☆18Updated 3 years ago
- ☆96Updated 2 months ago
- Automated detection rule analysis utility☆29Updated 2 years ago
- ShellSweeping the evil.☆53Updated last year
- A library for fast parse & import of Windows Eventlogs into Elasticsearch.☆85Updated last month
- A collection of scripts for dealing with Cobalt Strike beacons in Python☆168Updated 4 years ago
- Simple PowerShell script to enable process scanning with Yara.☆95Updated 2 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- My conference presentations☆66Updated last year
- Rhaegal is a tool written in Python 3 used to scan Windows Event Logs for suspicious logs. Rhaegal uses custom rule format to detect sus…☆41Updated last year
- Detect possible sysmon logging bypasses given a specific configuration☆111Updated 6 years ago
- ☆130Updated last year
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆146Updated last year
- IcedID Decryption Tool☆28Updated 4 years ago