clong / detect-responderLinks
☆76Updated 6 years ago
Alternatives and similar repositories for detect-responder
Users that are interested in detect-responder are comparing it to the libraries listed below
Sorting:
- 504 VSAgent☆23Updated 7 years ago
- Generate ATT&CK Navigator layer file from PowerShell Empire agent logs☆49Updated 6 years ago
- Credit to Helge Klein - https://helgeklein.com/blog/2015/02/creating-realistic-test-user-accounts-active-directory/☆69Updated 7 years ago
- Repository for my ATT&CK analysis research.☆69Updated 6 years ago
- A companion tool for BloodHound offering Active Directory statistics and number crunching☆65Updated 6 years ago
- ☆53Updated 7 years ago
- ☆98Updated 6 years ago
- Reconnaissance tool for Microsoft Office 365☆69Updated 6 years ago
- ☆41Updated 7 years ago
- ☆17Updated 8 years ago
- Detect possible sysmon logging bypasses given a specific configuration☆111Updated 6 years ago
- PurpleSpray is an adversary simulation tool that executes password spray behavior under different scenarios and conditions with the purpo…☆51Updated 5 years ago
- A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…☆71Updated 3 years ago
- CloudBurst is a red team framework for interacting with cloud providers to capture, compromise, and exfil data.☆36Updated 6 years ago
- ☆140Updated 5 years ago
- Cobalt Strike Field Manual - A quick reference for Windows commands that can be accessed in a beacon console.☆45Updated 7 years ago
- A collection of files for adding and leveraging custom properties in BloodHound.☆183Updated 5 years ago
- Presentation Slides☆27Updated 5 years ago
- PSAttck is a light-weight framework for the MITRE ATT&CK Framework.☆38Updated 3 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 6 years ago
- SMB Named Pipe shell☆67Updated 6 months ago
- Mitre Att&ck Technique Emulation☆82Updated 6 years ago
- TA505+ Adversary Simulation☆65Updated 4 years ago
- PortPlow is a distributed port and system scanning & enumeration service. It enables the quick and automated enumeration of ports and ser…☆54Updated 6 months ago
- Web Filter External Enumeration Tool (WebFEET)☆77Updated 10 years ago
- SilkETW & SilkService☆40Updated 5 years ago
- Python script for analyis of the "Trust.csv" file generated by Veil PowerView. Provides graph based analysis and output.☆121Updated 4 years ago
- A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics☆86Updated 7 years ago
- SEC599 supporting GitHub repository☆16Updated 5 years ago
- LogRM is a post exploitation powershell script which it uses windows event logs to gather information about internal network☆74Updated 5 years ago