Extract the Procedures (TTP) from CTI reports
☆17Dec 13, 2025Updated 2 months ago
Alternatives and similar repositories for ttpExtractor
Users that are interested in ttpExtractor are comparing it to the libraries listed below
Sorting:
- Ludus role for deploying a Cobalt Strike Teamserver onto Linux servers☆18Mar 19, 2025Updated 11 months ago
- ☆10Jun 26, 2024Updated last year
- Offensive toolkit and BloodHound graph creator for DPAPI blobs and master key files☆14Jan 10, 2026Updated last month
- Ruby On Rails unrestricted render() exploit☆16Feb 9, 2018Updated 8 years ago
- Threat feeds designed to extract adversarial TTPs and IOCs, using: ✨AI✨☆70Updated this week
- demo unhooking functions in ntdll☆28Jul 15, 2025Updated 7 months ago
- The most extensive collection of BOFs (Beacon Object Files) tailored for Red Teams using C++23☆23Jun 19, 2025Updated 8 months ago
- AWS X-Ray for Covert Command & Control☆45Oct 13, 2025Updated 4 months ago
- Invoke-AtomicAssessment is a powerful tool designed to facilitate adversary emulation by leveraging Atomic Red Team.☆47Jan 22, 2025Updated last year
- What's the Red Team doing to my Linux Box? - BSides Vienna 2024☆17Nov 23, 2024Updated last year
- BOF to steal Teams cookies☆123Nov 2, 2025Updated 3 months ago
- ☆26Sep 29, 2018Updated 7 years ago
- Script to decrypt / import chromium (edge/chrome) cookies☆15Aug 1, 2023Updated 2 years ago
- ☆26Nov 25, 2025Updated 3 months ago
- Command-line tool for discovering SaaS platforms a company uses via DNS enumeration☆37Jul 23, 2025Updated 7 months ago
- ☆35Feb 5, 2026Updated 3 weeks ago
- Docker container for running CobaltStrike 4.7 and above☆24Mar 20, 2025Updated 11 months ago
- Generate Proxy DLLs in Rust☆47Sep 2, 2025Updated 5 months ago
- ☆39Nov 25, 2025Updated 3 months ago
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆123Jan 17, 2026Updated last month
- A C# project that builds a Web Application which redirects all HTTPS☆26Feb 11, 2025Updated last year
- Linker for Beacon Object Files☆155Updated this week
- Script to extract the cached credentials from SSSD, getting Active Directory credentials from Unix systems☆24Jun 14, 2023Updated 2 years ago
- Dump protected process memory by using BYOVD to tamper with handle objects in the kernel.☆38Aug 5, 2025Updated 6 months ago
- ☆25Jul 5, 2018Updated 7 years ago
- This project provides Base64 encoding and decoding functionality to PowerShell within Constrained Language Mode☆27Jun 25, 2024Updated last year
- Explore and filter your GitHub starred repositories☆25Dec 5, 2023Updated 2 years ago
- Test bench lab for Shellcode Obfuscation☆35Sep 2, 2025Updated 5 months ago
- Obfuscating function calls using Vectored Exception Handlers by redirecting execution through exception-based control flow. Uses byte swa…☆115Oct 30, 2025Updated 4 months ago
- Utilizng an MCP Server to communicate with your C2☆86May 15, 2025Updated 9 months ago
- Adversary Emulation Planner☆42Jan 9, 2026Updated last month
- Aggressor script to automatically download and load an arsenal of open source and private Cobalt Strike tooling.☆45Aug 16, 2024Updated last year
- This project is an Ansible Role to execute Atomic Red Team tests against multiple machines by wrapping Invoke-AtomicRedTeam☆27Jul 4, 2024Updated last year
- ☆54Oct 13, 2025Updated 4 months ago
- A PoC UDRL for Cobalt Strike built with Crystal Palace that combines Raphael Mudge's page streaming technique with a modular call gate (D…☆93Jan 21, 2026Updated last month
- ☆30Mar 2, 2023Updated 2 years ago
- Clipboard for Command and Control between VDI, RDP and Others on Windows☆50Dec 7, 2025Updated 2 months ago
- ☆28Dec 28, 2017Updated 8 years ago
- Impersonate Tokens using only NTAPI functions☆84Apr 4, 2025Updated 10 months ago