f0wl / MalwareLab_VM-Setup

Related projects: ⓘ

• Te-k / cobaltstrike
  Code and yara rules to detect and analyze Cobalt Strike
  ☆262Updated 3 years ago
• ethereal-vx / Antivirus-Artifacts
  Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.
  ☆722Updated 2 years ago
• Sentinel-One / CobaltStrikeParser
  ☆1,008Updated 9 months ago
• Apr4h / CobaltStrikeScan
  Scan files or process memory for CobaltStrike beacons and parse their configuration
  ☆894Updated 3 years ago
• CCob / BeaconEye
  Hunts out CobaltStrike beacons and logs operator command output
  ☆870Updated 2 weeks ago
• DidierStevens / Beta
  Beta versions of my software
  ☆245Updated 11 months ago
• RedTeamOperations / Advanced-Process-Injection-Workshop
  ☆718Updated 11 months ago
• DissectMalware / XLMMacroDeobfuscator
  Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)
  ☆568Updated 4 months ago
• SafeEval / practical-malware-analysis
  Exercise writeups from the book Practical Malware Analysis.
  ☆192Updated last year
• FourCoreLabs / EDRHunt
  Scan installed EDRs and AVs on Windows
  ☆554Updated last year
• jsecurity101 / MSRPC-to-ATTACK
  A repository that maps commonly used attacks using MSRPC protocols to ATT&CK
  ☆305Updated last year
• 3lp4tr0n / BeaconHunter
  Detect and respond to Cobalt Strike beacons using ETW.
  ☆478Updated 2 years ago
• NexusFuzzy / CobaltSpam
  Tool based on CobaltStrikeParser from SentinelOne which can be used to spam a CobaltStrike server with fake beacons
  ☆365Updated 3 years ago
• OALabs / BlobRunner
  Quickly debug shellcode extracted during malware analysis
  ☆547Updated last year
• StrangerealIntel / CyberThreatIntel
  Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups
  ☆697Updated last year
• CheckPointSW / Evasions
  Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into ca…
  ☆376Updated 2 months ago
• klezVirus / CheeseTools
  Self-developed tools for Lateral Movement/Code Execution
  ☆685Updated 3 years ago
• mandiant / Vulnerability-Disclosures
  ☆183Updated 2 weeks ago
• rajiv2790 / FalconEye
  ☆288Updated 3 years ago
• CCob / SharpBlock
  A method of bypassing EDR's active projection DLL's by preventing entry point exection
  ☆1,094Updated 3 years ago
• commial / experiments
  Expriments
  ☆438Updated 4 months ago
• michaelweber / Macrome
  Excel Macro Document Reader/Writer for Red Teamers & Analysts
  ☆513Updated 2 years ago
• Mr-Un1k0d3r / EDRs
  ☆1,980Updated last year
• ConsciousHacker / WFH
  ☆401Updated 2 years ago
• S1ckB0y1337 / Cobalt-Strike-CheatSheet
  Some notes and examples for cobalt strike's functionality
  ☆969Updated 2 years ago
• aahmad097 / AlternativeShellcodeExec
  Alternative Shellcode Execution Via Callbacks
  ☆1,412Updated last year
• RedSiege / C2concealer
  C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.
  ☆991Updated 2 months ago
• forrest-orr / moneta
  Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
  ☆659Updated 6 months ago
• sailay1996 / awesome_windows_logical_bugs
  collect for learning cases
  ☆563Updated 3 months ago
• wavestone-cdt / EDRSandblast
  ☆1,457Updated 2 weeks ago