dstepanic / attck_empireLinks
Generate ATT&CK Navigator layer file from PowerShell Empire agent logs
☆49Updated 6 years ago
Alternatives and similar repositories for attck_empire
Users that are interested in attck_empire are comparing it to the libraries listed below
Sorting:
- Useful Threat Hunting Stuff☆33Updated 4 years ago
- ☆41Updated 7 years ago
- Comprehensive Pivoting Framework☆20Updated 8 years ago
- SilkETW & SilkService☆40Updated 5 years ago
- 504 VSAgent☆23Updated 7 years ago
- ☆76Updated 7 years ago
- A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics☆86Updated 7 years ago
- Repository for my ATT&CK analysis research.☆69Updated 6 years ago
- An offensive Powershell console☆30Updated 9 years ago
- ☆98Updated 6 years ago
- Credit to Helge Klein - https://helgeklein.com/blog/2015/02/creating-realistic-test-user-accounts-active-directory/☆69Updated 7 years ago
- A companion tool for BloodHound offering Active Directory statistics and number crunching☆64Updated 6 years ago
- Talk given at DerbyCon and RuxCon 2016☆22Updated 8 years ago
- All the Power with no Shell☆36Updated 3 years ago
- Cobalt Strike Field Manual - A quick reference for Windows commands that can be accessed in a beacon console.☆46Updated 7 years ago
- A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…☆71Updated 3 years ago
- Powershell Empire Persistence finder☆119Updated 8 years ago
- Collection of scripts for interacting with AD Kerberos from Linux☆74Updated 7 years ago
- ☆59Updated 6 years ago
- PurpleSpray is an adversary simulation tool that executes password spray behavior under different scenarios and conditions with the purpo…☆51Updated 5 years ago
- ☆83Updated 9 years ago
- Simple DDE object detector☆56Updated 7 years ago
- PowerShell Empire docker build☆23Updated 8 years ago
- A collection of PowerShell Modules for BloodHound/Empire Orchestration☆106Updated 7 years ago
- LogRM is a post exploitation powershell script which it uses windows event logs to gather information about internal network☆74Updated 5 years ago
- Quick and dirty System (Power)Shell using NamedPipe impersonation.☆43Updated 8 years ago
- The new name is DeTT&CT☆24Updated 5 years ago
- Mitre Att&ck Technique Emulation☆82Updated 6 years ago
- Powershell Persistence Locator☆66Updated 8 years ago
- Quick PoC I Wrote for Bypassing Next Gen AV Remotely for Pentesting☆41Updated 6 years ago