curated-intel / Initial-Access-Broker-Landscape

Related projects: ⓘ

• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆57Updated last year
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆76Updated 2 years ago
• malienist / lupo
  Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
  ☆104Updated 2 years ago
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆72Updated 2 years ago
• mlgualtieri / PurpleTeamSummit
  ☆25Updated 3 years ago
• ppt0 / easyhunting
  ☆17Updated this week
• pr0xylife / IcedID
  ☆34Updated 9 months ago
• ninoseki / shimon
  URL fingerprinting made easy
  ☆80Updated 5 months ago
• darkoperator / Veil-PowerView
  Veil-PowerView is a powershell tool to gain network situational awareness on Windows domains.
  ☆47Updated 9 years ago
• carbonblack / active_c2_ioc_public
  Active C2 IoCs
  ☆96Updated last year
• abusech / ThreatFox
  Open IOC sharing platform
  ☆52Updated 11 months ago
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆48Updated last year
• shabarkin / pointer
  Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.
  ☆65Updated 2 years ago
• pr0xylife / Emotet
  IOC Collection 2022
  ☆55Updated last year
• MHaggis / ShellSweep
  ShellSweeping the evil.
  ☆49Updated 3 months ago
• JPCERTCC / Lazarus-research
  Lazarus analysis tools and research report
  ☆54Updated 8 months ago
• tsale / BlueSploit
  BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.
  ☆32Updated 4 years ago
• splunk / melting-cobalt
  A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object
  ☆162Updated last year
• lawiet47 / autoresponder
  Carbon Black Response IR tool
  ☆53Updated 3 years ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆74Updated 2 years ago
• CyberSecurityUP / Adversary-Emulation-Matrix
  ☆59Updated 3 years ago
• soufianetahiri / RansomwareMonitor
  A ransomware group monitoring bot written in C#.
  ☆55Updated 2 years ago
• NVISOsecurity / nviso-cti
  ☆40Updated 5 months ago
• TH3xACE / EDR-Test
  Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike [Purple Team].
  ☆144Updated last year
• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆75Updated last week
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆86Updated last year
• StevenD33 / Lab-DFIR-SOC
  ☆62Updated 3 years ago
• DODC / turncoat
  ☆42Updated 2 years ago
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆45Updated 3 months ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆49Updated 3 months ago