Alternatives and similar repositories for ThreatHuntingExcursions

Users that are interested in ThreatHuntingExcursions are comparing it to the libraries listed below

• Cyberclues / rtf_exploit_extractor
  Script to extract malicious payload and decoy document from CVE-2015-1641 exploit documents
  ☆23Updated 8 years ago
• BlackMathIT / 2017-11882_Generator
  CVE-2017-11882 File Generator PoC
  ☆35Updated 8 years ago
• Neo23x0 / webshell-intel
  Scan web server for known webshell names and responses
  ☆50Updated 9 years ago
• interference-security / empyre-web
  EmPyre Web Interface
  ☆12Updated 8 years ago
• NotGlop / SysExec
  [Windows] Local Privilege Escalation - WebClient
  ☆59Updated 8 years ago
• coolx28 / ThreatHunter-Playbook
  ☆17Updated 8 years ago
• tyranid / ZeroNights2017
  Some sample code from my Zero Nights 2017 presentation.
  ☆61Updated 8 years ago
• tyranid / DotNetInteropDemos
  A set of demos and a PowerShell module to interact with DotNetInterop.
  ☆68Updated 7 years ago
• xti9er / rootkit_checker
  --= Xt9 - Anti - Rootkit =-- beta v0.11 by xti9er
  ☆15Updated 5 years ago
• DiabloHorn / DiabloHorn
  Projects and POCs
  ☆61Updated 11 years ago
• eurecom-s3 / linux_screenshot_xwindows
  Volatility plugin to extract X screenshots from a memory dump
  ☆37Updated 7 years ago
• breenmachine / various
  ☆20Updated last year
• DiabloHorn / rdps2rdp
  Decrypt MITM SSL RDP and save to pcap
  ☆53Updated 11 years ago
• retbandit-zz / BlackHat2017
  BlackHat Europe 2017 Slides
  ☆25Updated 7 years ago
• Charliedean / PsexecSpray
  Spray SMB with hashes, Then psexec
  ☆32Updated 6 years ago
• brandonprry / Potato
  Windows privilege escalation through NTLM Relay and NBNS Spoofing
  ☆52Updated 9 years ago
• secabstraction / Create-WMIshell
  ☆53Updated 10 years ago
• Skons / ms17-0100
  Mixing up CVE and MS like a pro
  ☆25Updated 8 years ago
• TKCERT / winnti-detector
  Network detector for Winnti malware
  ☆21Updated 7 years ago
• 3gstudent / Bypass-Windows-AppLocker
  ☆55Updated 8 years ago
• johnjohnsp1 / MimkatzCollider
  Mimikatz HashClash
  ☆12Updated 10 years ago
• aserper / DDEtect
  Simple DDE object detector
  ☆56Updated 8 years ago
• ernw / insinuator-snippets
  A collection of code snippets used in blog posts.
  ☆54Updated 4 months ago
• DamonMohammadbagher / NativePayload_ICMP
  C# code for Transferring Backdoor Payloads by ICMPv4 Traffic and bypassing Anti-Viruses
  ☆29Updated 2 years ago
• msuiche / malcheck
  Portable utility to check if a machine has been infected by Shamoon2
  ☆15Updated 8 years ago
• MortenSchenk / Babuska-Dolls
  ☆24Updated 8 years ago
• Cn33liz / MS17-012
  MS17-012 - COM Session Moniker EoP Exploit running within MSBuild.exe
  ☆60Updated 8 years ago
• strozfriedberg / Nmap-Scripts
  ☆47Updated 10 years ago
• swizzlez / Invoke-EnumSecurityTools
  ☆59Updated 6 years ago
• s0m30ne / JuniperBackdoor
  Juniper backdoor
  ☆14Updated 10 years ago