cedowens / C2-JARM
A list of JARM hashes for different ssl implementations used by some C2/red team tools.
☆140Updated last year
Alternatives and similar repositories for C2-JARM:
Users that are interested in C2-JARM are comparing it to the libraries listed below
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆165Updated 2 years ago
- Active C2 IoCs☆97Updated 2 years ago
- Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.☆65Updated 2 years ago
- Blueteam operational triage registry hunting/forensic tool.☆145Updated last year
- Open Dataset of Cobalt Strike Beacon metadata (2018-2022)☆125Updated 2 years ago
- Cobalt Strike Beacon configuration extractor and parser.☆150Updated 3 years ago
- YARA rule analyzer to improve rule quality and performance☆97Updated 2 months ago
- attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage☆111Updated last year
- ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabili…☆172Updated 6 months ago
- Detect possible sysmon logging bypasses given a specific configuration☆107Updated 6 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆69Updated 3 years ago
- Simple PowerShell script to enable process scanning with Yara.☆92Updated 2 years ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 3 years ago
- ☆86Updated last year
- A collection of scripts for dealing with Cobalt Strike beacons in Python☆168Updated 4 years ago
- Random hunting ordiented yara rules☆95Updated last year
- Python library for dissecting and parsing Cobalt Strike related data such as Beacon payloads and Malleable C2 Profiles☆161Updated 5 months ago
- Valhalla API Client☆68Updated 2 years ago
- A honeypot for the Log4Shell vulnerability (CVE-2021-44228).☆92Updated 3 months ago
- HoneyCreds network credential injection to detect responder and other network poisoners.☆216Updated 3 years ago
- Code and yara rules to detect and analyze Cobalt Strike☆264Updated 3 years ago
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆59Updated 2 years ago
- Carbon Black TAU Excel 4 Macro Analysis☆40Updated last year
- A repo to document API functions mapped to security events across diverse platforms☆75Updated 5 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆76Updated last year
- ☆97Updated 4 years ago
- ☆67Updated 3 weeks ago
- Carbon Black Response IR tool☆53Updated 4 years ago
- AdHoc solutions☆48Updated last year