Alternatives and similar repositories for imaginaryC2:

Users that are interested in imaginaryC2 are comparing it to the libraries listed below

• chenerlich / FCL
  FCL (Fileless Command Lines) - Known command lines of fileless malicious executions
  ☆465Updated 3 years ago
• joesecurity / pafishmacro
  Pafish Macro is a Macro enabled Office Document to detect malware analysis systems and sandboxes. It uses evasion & detection techniques …
  ☆281Updated 7 years ago
• 0x0be / PEpper
  An open source script to perform malware static analysis on Portable Executable
  ☆311Updated last year
• francisck / DanderSpritz_lab
  A fully functional DanderSpritz lab in 2 commands
  ☆424Updated 5 years ago
• gleeda / memtriage
  Allows you to quickly query a Windows machine for RAM artifacts
  ☆219Updated 4 years ago
• silence-is-best / c2db
  c2 traffic
  ☆189Updated 2 years ago
• n0dec / MalwLess
  Test Blue Team detections without running any attack.
  ☆272Updated 9 months ago
• JavelinNetworks / HoneypotBuster
  ☆282Updated 7 years ago
• misterch0c / what_is_this_c2
  For all these times you're asking yourself "what is this panel again?"
  ☆253Updated last year
• beahunt3r / Windows-Hunting
  ☆349Updated 3 years ago
• JPCERTCC / MalConfScan
  Volatility plugin for extracts configuration data of known malware
  ☆487Updated last year
• EmpireProject / PSInject
  Inject PowerShell into any process
  ☆223Updated 6 years ago
• k-vitali / Malware-Misc-RE
  Miscellaneous Malware RE
  ☆195Updated 2 years ago
• christophetd / spoofing-office-macro
  PoC of a VBA macro spawning a process with a spoofed parent and command line.
  ☆378Updated 4 years ago
• Cyb3rWard0g / Invoke-ATTACKAPI
  A PowerShell script to interact with the MITRE ATT&CK Framework via its own API
  ☆367Updated 6 years ago
• two06 / Inception
  Provides In-memory compilation and reflective loading of C# apps for AV evasion.
  ☆368Updated 11 months ago
• WithSecureLabs / snake
  snake - a malware storage zoo
  ☆219Updated last year
• marcosd4h / memhunter
  Live hunting of code injection techniques
  ☆380Updated 5 years ago
• ewhitehats / InvisiblePersistence
  Persisting in the Windows registry "invisibly"
  ☆340Updated 6 years ago
• InQuest / yara-rules
  A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.
  ☆370Updated 2 years ago
• Kirtar22 / Litmus_Test
  Detecting ATT&CK techniques & tactics for Linux
  ☆258Updated 4 years ago
• lorentzenman / sheepl
  Sheepl : Creating realistic user behaviour for supporting tradecraft development within lab environments
  ☆396Updated 11 months ago
• nccgroup / Cyber-Defence
  Information released publicly by NCC Group's Cyber Incident Response Team
  ☆477Updated 3 years ago
• mandiant / flare-wmi
  ☆422Updated last year
• netspooky / inhale
  A malware analysis and classification tool.
  ☆191Updated 3 years ago
• misterch0c / APT34
  APT34/OILRIG leak
  ☆231Updated 5 years ago
• mandiant / DueDLLigence
  ☆465Updated last year
• JPCERTCC / ToolAnalysisResultSheet
  Tool Analysis Result Sheet
  ☆347Updated 7 years ago
• R3MRUM / PSDecode
  PowerShell script for deobfuscating encoded PowerShell scripts
  ☆424Updated 4 years ago
• pwndizzle / CodeExecutionOnWindows
  A list of ways to execute code on Windows using legitimate Windows tools
  ☆304Updated 5 years ago