danzek / awesome-lol-commonly-abusedLinks
Awesome list of Living off the Land (LOL) methods, tools, and features commonly abused by attackers
☆24Updated 2 months ago
Alternatives and similar repositories for awesome-lol-commonly-abused
Users that are interested in awesome-lol-commonly-abused are comparing it to the libraries listed below
Sorting:
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 2 years ago
- A collection of tools using OCR to extract potential usernames from RDP screenshots.☆30Updated last year
- Extension functionality for the NightHawk operator client☆27Updated last year
- CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"☆49Updated 3 years ago
- Leverages B64 chunks to split files and save to clipboard☆26Updated 2 months ago
- A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.☆21Updated 11 months ago
- AutoPoC Generator HoneyPoC☆35Updated 2 months ago
- HashKitty is a user-friendly cross-platform Python wrapper for Hashcat designed to provide an easy password cracking experience for both …☆41Updated 11 months ago
- Python tool to find vulnerable AD object and generating csv report☆14Updated 2 years ago
- EventLogSilencer is a PowerShell script designed for disable Windows Event Logging☆17Updated last year
- ☆22Updated last year
- ECC Public Key Cryptography☆38Updated last year
- Over 100K open-source YARA signatures evaluated against over 280K files to give insights into the performance of each YARA rule.☆24Updated 2 years ago
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆52Updated last year
- A project created with an aim to emulate and test exfiltration of data over different network protocols.☆31Updated 2 years ago
- Items related to the RedELK workshop given at security conferences☆29Updated last year
- Repository of Volatility3 plugins☆22Updated 2 years ago
- WMI SA stuffs☆30Updated 3 years ago
- ☆14Updated last year
- This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, …☆19Updated 2 years ago
- CIS Benchmark testing of Windows SIEM configuration☆44Updated 2 years ago
- Simple and sane cryptographic wrapper library.☆27Updated 2 years ago
- powershell script i wrote that can suspend an arbitrary process (with limits)☆20Updated 2 years ago
- ☆45Updated last year
- Automation of Active Directory penetration testing tasks on top of BloodHound CE☆34Updated last year
- ☆54Updated 6 months ago
- Docker container for running CobaltStrike 4.10☆37Updated 9 months ago
- ☆18Updated last year
- ☆52Updated last year
- ☆12Updated 4 years ago