f0wl / blackCatConf
Configuration Extractor for BlackCat Ransomware
☆30Updated 3 years ago
Alternatives and similar repositories for blackCatConf:
Users that are interested in blackCatConf are comparing it to the libraries listed below
- MITRE TTPs derived from Conti's leaked playbooks from XSS.IS☆37Updated 3 years ago
- Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …☆36Updated 2 months ago
- A project created with an aim to emulate and test exfiltration of data over different network protocols.☆31Updated 2 years ago
- ☆27Updated 5 months ago
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated 2 years ago
- A full analysis report detailing as much as possible of a Malware or a Threat☆28Updated 10 months ago
- Defeating Anti-Debugging Techniques for Malware Analysis☆13Updated 2 years ago
- Python wrappers for mal_unpack☆36Updated last year
- aggregated repo for all conferences and talks I am giving☆17Updated 3 years ago
- Tools for offensive security of NetBackup infrastructures☆40Updated last year
- Scans a list of raccoon servers from Tria.ge and extracts the config☆15Updated last year
- Golang bindings for PE-sieve☆43Updated last year
- A privilege escalation vulnerability exists in Windows due to a flaw in the implementation of the Atom Table. An attacker could exploit t…☆26Updated 7 months ago
- ☆14Updated 11 months ago
- Extract payload URLs from Follina (CVE-2022-30190) docx and rtf files☆31Updated 2 years ago
- Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).☆55Updated 2 years ago
- ☆20Updated last year
- Deathstar is an Empire plugin that automates gaining Domain and/or Enterprise Admin rights in Active Directory environments using common …☆18Updated last month
- Yara Rules for Modern Malware☆77Updated last year
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆44Updated 2 years ago
- ☆24Updated 2 years ago
- ☆18Updated last year
- Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's☆61Updated 4 months ago
- ☆38Updated 2 years ago
- ☆24Updated 3 years ago
- Mythic C2 wrapper for NimSyscallPacker☆24Updated last month
- ☆14Updated 2 years ago
- Repo containing my public talks☆23Updated last year
- PoC MSI payload based on ASEC/AhnLab's blog post☆23Updated 2 years ago
- Python tool to find vulnerable AD object and generating csv report☆26Updated 2 years ago