Alternatives and similar repositories for ThreatHuntingExcursions

Users that are interested in ThreatHuntingExcursions are comparing it to the libraries listed below

• Neo23x0 / webshell-intel
  Scan web server for known webshell names and responses
  ☆50Updated 9 years ago
• Cyberclues / rtf_exploit_extractor
  Script to extract malicious payload and decoy document from CVE-2015-1641 exploit documents
  ☆23Updated 8 years ago
• NotGlop / SysExec
  [Windows] Local Privilege Escalation - WebClient
  ☆58Updated 8 years ago
• interference-security / empyre-web
  EmPyre Web Interface
  ☆12Updated 8 years ago
• BlackMathIT / 2017-11882_Generator
  CVE-2017-11882 File Generator PoC
  ☆35Updated 8 years ago
• dragoneeg / Struts2-048
  CVE-2017-9791
  ☆27Updated 8 years ago
• tyranid / ZeroNights2017
  Some sample code from my Zero Nights 2017 presentation.
  ☆61Updated 8 years ago
• coolx28 / ThreatHunter-Playbook
  ☆17Updated 8 years ago
• eurecom-s3 / linux_screenshot_xwindows
  Volatility plugin to extract X screenshots from a memory dump
  ☆37Updated 7 years ago
• DiabloHorn / DiabloHorn
  Projects and POCs
  ☆61Updated 11 years ago
• retbandit-zz / BlackHat2017
  BlackHat Europe 2017 Slides
  ☆25Updated 7 years ago
• nccgroup / Royal_APT
  Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research
  ☆53Updated 7 years ago
• 3gstudent / Bypass-Windows-AppLocker
  ☆55Updated 8 years ago
• Charliedean / PsexecSpray
  Spray SMB with hashes, Then psexec
  ☆32Updated 6 years ago
• DiabloHorn / rdps2rdp
  Decrypt MITM SSL RDP and save to pcap
  ☆53Updated 11 years ago
• aserper / DDEtect
  Simple DDE object detector
  ☆56Updated 8 years ago
• bluecloudws / ioceditor
  IOC-EDT is an open source web based tool for creating indicators of compromise in the OpenIOC (http://www.openioc.org) format.
  ☆18Updated 11 years ago
• vletoux / ms17-010-Scanner
  ☆58Updated 8 years ago
• brandonprry / Potato
  Windows privilege escalation through NTLM Relay and NBNS Spoofing
  ☆52Updated 9 years ago
• Cymmetria / StrutsHoneypot
  Struts Apache 2 based honeypot as well as a detection module for Apache 2 servers
  ☆72Updated 8 years ago
• Skons / ms17-0100
  Mixing up CVE and MS like a pro
  ☆25Updated 8 years ago
• breenmachine / various
  ☆20Updated last year
• johnjohnsp1 / MimkatzCollider
  Mimikatz HashClash
  ☆12Updated 10 years ago
• s0m30ne / JuniperBackdoor
  Juniper backdoor
  ☆14Updated 9 years ago
• msuiche / malcheck
  Portable utility to check if a machine has been infected by Shamoon2
  ☆15Updated 8 years ago
• sensepost / Misc-Windows-Hacking
  Miscellaneous projects related to attacking Windows.
  ☆27Updated 6 years ago
• techbliss / Yara_Mailware_Quick_menu_scanner
  Work Fast With the pattern matching swiss knife for malware researchers.
  ☆38Updated 9 years ago
• t3ntman / Conference-Talks
  Slides from previous conference talks
  ☆41Updated 8 years ago
• DamonMohammadbagher / NativePayload_ICMP
  C# code for Transferring Backdoor Payloads by ICMPv4 Traffic and bypassing Anti-Viruses
  ☆29Updated 2 years ago
• tyranid / DotNetInteropDemos
  A set of demos and a PowerShell module to interact with DotNetInterop.
  ☆68Updated 7 years ago