gmatuz / npm-initial-accessLinks
Easy to extend initial access scenario to help with EDR testing on Linux and Mac
☆23Updated 3 years ago
Alternatives and similar repositories for npm-initial-access
Users that are interested in npm-initial-access are comparing it to the libraries listed below
Sorting:
- Unpacking and decryption tools for the Emotet malware☆46Updated 3 years ago
- PoC for CVE-2021-4034 dubbed pwnkit☆35Updated 3 years ago
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆69Updated 3 years ago
- Lazarus analysis tools and research report☆56Updated last year
- C# User Simulation☆32Updated 2 years ago
- ☆15Updated 3 years ago
- ☆37Updated 3 years ago
- Tools that trigger False Positive AV alerts☆50Updated 6 months ago
- Continuous kerberoast monitor☆45Updated last year
- Slides from my talk at the Adversary Village, Defcon 30☆29Updated 2 years ago
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- ☆38Updated 3 years ago
- Reproducible and extensible BloodHound playbooks☆43Updated 5 years ago
- An Ansible role for installing Cobalt Strike.☆78Updated last week
- ☆27Updated 3 years ago
- ☆22Updated last year
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 2 years ago
- Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.☆66Updated 3 years ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆73Updated 3 years ago
- MITRE TTPs derived from Conti's leaked playbooks from XSS.IS☆38Updated 3 years ago
- A fast wordlist to nthash converter☆21Updated 3 years ago
- Tools helpful for malware analysis☆23Updated 10 months ago
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- ☆10Updated 2 years ago
- Simple PowerShell script to enable process scanning with Yara.☆94Updated 2 years ago
- Extract payload URLs from Follina (CVE-2022-30190) docx and rtf files☆31Updated 3 years ago
- ☆41Updated 2 years ago
- Generate YARA rules for OOXML documents.☆38Updated 2 years ago