Alternatives and similar repositories for cs-discovery

Users that are interested in cs-discovery are comparing it to the libraries listed below

• georgi-i / winevt_logs_analysis
  Searching .evtx logs for remote connections
  ☆24Updated 2 years ago
• RedTeamOperations / Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW
  CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"
  ☆51Updated 3 years ago
• iomoath / web-log-analyzer
  Web access logs analyzer - provides an insight on how remote hosts behave
  ☆15Updated 4 years ago
• matthw / malware_analysis
  ☆18Updated last year
• 3xpl01tc0d3r / Building-ActiveDirectory-Lab
  Building ActiveDirectory Lab for practicing various attack vectors used during Red Team engagement.
  ☆38Updated 5 years ago
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆42Updated last month
• ZeroPointSecurity / Domain-Enumeration-Tool
  Perform Windows domain enumeration via LDAP
  ☆37Updated 3 years ago
• advanced-threat-research / NetLlix
  A project created with an aim to emulate and test exfiltration of data over different network protocols.
  ☆31Updated 2 years ago
• RiccardoAncarani / talks
  ☆43Updated 3 years ago
• sketchymoose / workslikeaJARM
  Method of finding interesting domains using keywords + JARMs
  ☆13Updated 2 years ago
• crawl3r / DaaC2
  Discord as a C2
  ☆49Updated 5 years ago
• xforcered / xPipe
  Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions
  ☆53Updated 4 years ago
• dmcxblue / Red-Team-Notes
  Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …
  ☆44Updated 3 years ago
• hausec / CobaltStrikeToGhostWriter
  Log converter from CS log to Ghostwriter CSV
  ☆31Updated 5 years ago
• OtterHacker / LabS4U2Self
  ☆31Updated 3 years ago
• hyp3rlinx / NtFileSins
  Windows File Enumeration Intel Gathering Tool.
  ☆17Updated 2 years ago
• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆45Updated 2 years ago
• cedowens / Mod_Rewrite_Automation
  Scripts to automate standing up apache2 with mod_rewrite in front of C2 servers.
  ☆47Updated 4 years ago
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆60Updated 3 years ago
• horizon3ai / CVE-2021-44077
  Proof of Concept Exploit for ManageEngine ServiceDesk Plus CVE-2021-44077
  ☆35Updated 4 years ago
• mr-r3b00t / NotProxyShellHunter
  Check for NotProxyShell CVE-2022-40140 & CVE-2022-41082
  ☆26Updated 3 years ago
• hyd3sec / MultiThreaded_C2_With_Keylogger
  Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil
  ☆21Updated 3 years ago
• mobdk / WinBoost
  Execute Mimikatz with different technique
  ☆51Updated 4 years ago
• R-Secure / AMSI-Bypasses
  This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…
  ☆24Updated 3 years ago
• mhaskar / Octopus-C2-RedTeam-infrastructure-automation
  ☆21Updated 5 years ago
• BinaryDefense / beacon-fronting
  A simple command line program to help defender test their detections for network beacon patterns and domain fronting
  ☆70Updated 3 years ago
• CyberSecurityUP / Trevorfuscation
  A tool that automates the trevorc2 powershell agent obfuscation process with the pyfuscation tool
  ☆15Updated 2 years ago
• sneakid / DC30-PhineasTalk
  Slides for the talk we presented as UniPi at DefCon's Red Team Village
  ☆23Updated 3 years ago
• darksh3llRU / dark-doh
  ☆19Updated 2 years ago
• Finch4 / Malware-Analysis-Reports
  My Malware Analysis Reports
  ☆24Updated 3 years ago