danzek / awesome-lol-commonly-abusedLinks
Awesome list of Living off the Land (LOL) methods, tools, and features commonly abused by attackers
☆24Updated 2 months ago
Alternatives and similar repositories for awesome-lol-commonly-abused
Users that are interested in awesome-lol-commonly-abused are comparing it to the libraries listed below
Sorting:
- A collection of tools using OCR to extract potential usernames from RDP screenshots.☆30Updated last year
- ☆52Updated last year
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 2 years ago
- Extension functionality for the NightHawk operator client☆27Updated last year
- CIS Benchmark testing of Windows SIEM configuration☆44Updated 2 years ago
- Items related to the RedELK workshop given at security conferences☆29Updated last year
- A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.☆21Updated 10 months ago
- ☆14Updated last year
- Docker container for running CobaltStrike 4.10☆37Updated 8 months ago
- ECC Public Key Cryptography☆37Updated last year
- Slides from my talk at the Adversary Village, Defcon 30☆29Updated 2 years ago
- This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, …☆19Updated 2 years ago
- ☆27Updated 2 years ago
- A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…☆24Updated 3 years ago
- ☆14Updated 2 years ago
- EventLogSilencer is a PowerShell script designed for disable Windows Event Logging☆17Updated last year
- WMI SA stuffs☆30Updated 3 years ago
- Leverages B64 chunks to split files and save to clipboard☆25Updated last month
- CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"☆49Updated 3 years ago
- AutoPoC Generator HoneyPoC☆35Updated last month
- Python tool to find vulnerable AD object and generating csv report☆14Updated 2 years ago
- Automated activity logging utility for Mythic C2 v3.0+ with Ghostwriter v3.0+☆18Updated 3 months ago
- ☆22Updated last year
- powershell script i wrote that can suspend an arbitrary process (with limits)☆20Updated 2 years ago
- self-hosted Azure OSINT tool☆30Updated 8 months ago
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated 2 years ago
- Automation of Active Directory penetration testing tasks on top of BloodHound CE☆34Updated last year
- Discord C2 Profile for Mythic☆29Updated 3 months ago
- ☆45Updated last year
- ☆18Updated last year