gmatuz / npm-initial-accessLinks
Easy to extend initial access scenario to help with EDR testing on Linux and Mac
☆23Updated 3 years ago
Alternatives and similar repositories for npm-initial-access
Users that are interested in npm-initial-access are comparing it to the libraries listed below
Sorting:
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆69Updated 3 years ago
- ☆15Updated 3 years ago
- C# User Simulation☆32Updated 2 years ago
- Continuous kerberoast monitor☆45Updated last year
- PoC for CVE-2021-4034 dubbed pwnkit☆35Updated 3 years ago
- Triaging Windows event logs based on SANS Poster☆39Updated 2 years ago
- ☆38Updated 3 years ago
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- ☆34Updated 2 years ago
- An Ansible role for installing Cobalt Strike.☆78Updated 3 weeks ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 3 years ago
- Yara rules☆22Updated 2 years ago
- Unpacking and decryption tools for the Emotet malware☆46Updated 3 years ago
- ☆18Updated last year
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- pypykatz plugin for volatility3 framework☆40Updated last week
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆62Updated 2 years ago
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- Carbon Black Response IR tool☆53Updated 4 years ago
- Reproducible and extensible BloodHound playbooks☆43Updated 5 years ago
- Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…☆17Updated 4 years ago
- ☆45Updated 2 years ago
- Surface Analysis System on Cloud☆19Updated last year
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 2 years ago
- Zoom Persistence Aggressor and Handler☆55Updated 4 years ago
- Freyja is a Golang, Purple Team agent that compiles into Windows, Linux and macOS x64 executables.☆57Updated 7 months ago
- various slides and presentations I've worked on☆19Updated 2 months ago
- Tools that trigger False Positive AV alerts☆49Updated 5 months ago
- Simple PowerShell script to enable process scanning with Yara.☆93Updated 2 years ago
- ☆42Updated last year