danzek / awesome-lol-commonly-abusedLinks
Awesome list of Living off the Land (LOL) methods, tools, and features commonly abused by attackers
☆26Updated 4 months ago
Alternatives and similar repositories for awesome-lol-commonly-abused
Users that are interested in awesome-lol-commonly-abused are comparing it to the libraries listed below
Sorting:
- MITRE TTPs derived from Conti's leaked playbooks from XSS.IS☆39Updated 3 years ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 3 years ago
- CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"☆50Updated 3 years ago
- ☆18Updated last year
- Extension functionality for the NightHawk operator client☆27Updated last year
- Placeholder for my detection repo and misc detection engineering content☆42Updated last year
- EventLogSilencer is a PowerShell script designed for disable Windows Event Logging☆17Updated last year
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆28Updated 2 years ago
- ☆27Updated 9 months ago
- ☆54Updated 8 months ago
- Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's☆62Updated 8 months ago
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- WMI SA stuffs☆30Updated 3 years ago
- CIS Benchmark testing of Windows SIEM configuration☆44Updated 2 years ago
- Tool for obtaining information about PPL processes☆17Updated last year
- ☆82Updated 9 months ago
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆52Updated 2 years ago
- ☆45Updated last year
- ☆14Updated last year
- A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.☆21Updated last year
- Rapidly building a Windows 10 system to use for dynamic malware analysis (sandbox), sending data to Elastic Cloud.☆50Updated last year
- ☆52Updated last year
- A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.☆65Updated last year
- Malware Analysis tools☆26Updated 11 months ago
- Docker container for running CobaltStrike 4.10☆37Updated 11 months ago
- A project created with an aim to emulate and test exfiltration of data over different network protocols.☆31Updated 2 years ago
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- Leverages B64 chunks to split files and save to clipboard☆26Updated 4 months ago
- ☆19Updated 2 years ago
- ☆24Updated 3 years ago