gmatuz / npm-initial-accessLinks
Easy to extend initial access scenario to help with EDR testing on Linux and Mac
☆25Updated 3 years ago
Alternatives and similar repositories for npm-initial-access
Users that are interested in npm-initial-access are comparing it to the libraries listed below
Sorting:
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆70Updated 3 years ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆74Updated 3 years ago
- Tools for playing w/ CobaltStrike config - extractin, detection, processing, etc...☆29Updated 2 years ago
- ☆27Updated 3 years ago
- A list of IOCs applicable to PoshC2☆24Updated 5 years ago
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- Continuous kerberoast monitor☆45Updated 2 years ago
- Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.☆68Updated 3 years ago
- Repository for LNK stuff☆31Updated 3 years ago
- C# User Simulation☆33Updated 3 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- MITRE TTPs derived from Conti's leaked playbooks from XSS.IS☆40Updated 4 years ago
- ☆10Updated 2 years ago
- ☆38Updated 3 years ago
- ☆36Updated 2 years ago
- Triaging Windows event logs based on SANS Poster☆41Updated last month
- ☆43Updated 3 years ago
- ☆29Updated 9 months ago
- PS-TrustedDocuments: PowerShell script to handle information on trusted documents for Microsoft Office☆35Updated 2 years ago
- ☆23Updated 2 years ago
- ☆15Updated 3 years ago
- The repository accompanying the Buer Emulation workshop☆23Updated 4 years ago
- Simple PowerShell script to enable process scanning with Yara.☆96Updated 3 years ago
- ☆33Updated 3 years ago
- Yara Rules for Modern Malware☆79Updated last year
- Surface Analysis System on Cloud☆19Updated last year
- Placeholder for my detection repo and misc detection engineering content☆42Updated 2 years ago
- Timestomper and Timestamp checker with nanosecond accuracy for NTFS volumes☆53Updated 4 years ago
- ansible roles to download and install empire (BC-Security),deathstar(byt3bl33der) and starkiller (BC-Security)☆24Updated 3 years ago