Pcaps for PeddleCheap and implant communication + script for interpreting and decrypting pcaps.
☆17Nov 29, 2017Updated 8 years ago
Alternatives and similar repositories for PeddleCheap
Users that are interested in PeddleCheap are comparing it to the libraries listed below
Sorting:
- Bro PCAP Processing and Tagging API☆28Nov 9, 2017Updated 8 years ago
- The great TCP Gender Changer (tgcd) tool compiled for Windows☆14Apr 18, 2016Updated 9 years ago
- Attacking and defending web and VPN session hijacking in Pulse Secure Connect☆14Oct 24, 2019Updated 6 years ago
- ☆12Jan 13, 2018Updated 8 years ago
- execute remote cmd with smb like psexec☆45May 17, 2013Updated 12 years ago
- Vagrant configuration to setup a Thug honeyclient VM☆20Feb 26, 2015Updated 11 years ago
- Proof of concept communications from C# via a web browser process☆21Feb 15, 2019Updated 7 years ago
- ☆10Jan 4, 2015Updated 11 years ago
- The malsource dataset☆12Aug 31, 2021Updated 4 years ago
- A DLL that performs IAT hooking☆27Jul 6, 2018Updated 7 years ago
- SQL scripts for querying event logs☆21Jul 12, 2017Updated 8 years ago
- DUQU MALWARE SOURCE + BINARY + More coming☆13Feb 6, 2023Updated 3 years ago
- Shellcode execution via x86 inline assembly based on MSVC syntax☆17Apr 26, 2023Updated 2 years ago
- ☆15Sep 24, 2012Updated 13 years ago
- ☆12Aug 28, 2017Updated 8 years ago
- The Tangled Genealogy of IoT Malware☆12Jan 5, 2021Updated 5 years ago
- ☆11Mar 29, 2019Updated 6 years ago
- Template for asynchronously controlling meterpreter sessions☆13Jun 19, 2018Updated 7 years ago
- R3劫持所有异常☆15Jan 4, 2021Updated 5 years ago
- Post module for Metasploit to execute ELF in memory☆86Nov 23, 2018Updated 7 years ago
- Logs incoming attempts to connect to NetBIOS/SMB☆14May 15, 2017Updated 8 years ago
- CVE-2020-1337 a bypass of (PrintDemon) CVE-2020-1048’s patch☆14Aug 11, 2020Updated 5 years ago
- Bro analyzer that detects Google's QUIC protocol☆10Mar 2, 2021Updated 5 years ago
- Reconstruct files from QR-code video data☆22Feb 15, 2018Updated 8 years ago
- A Python PoC for CVE-2018-9206☆13Oct 22, 2018Updated 7 years ago
- ☆14Mar 30, 2022Updated 3 years ago
- Dockerized Zeek☆12Mar 9, 2024Updated 2 years ago
- The goal of this project is to examine, reverse, and document the different modules available in the Equation Group's DanderSpritz post-e…☆334Jun 23, 2018Updated 7 years ago
- Endpoint for Out-of-Band Exfiltration (DNS & HTTP)☆93Nov 9, 2018Updated 7 years ago
- 绕过burp破解版的截止日期限制. This is a tool to bypass the cracked version of the burpsuite_pro(Larry_Lau) certification deadline through time revers…☆23May 27, 2022Updated 3 years ago
- please use https://github.com/fireeye/vivisect instead☆16Oct 21, 2025Updated 5 months ago
- Various things to share☆11Sep 22, 2018Updated 7 years ago
- A weaponized version of CVE-2018-9206☆62Oct 30, 2018Updated 7 years ago
- Large Language Models for Software Engineering: A Systematic Literature Review☆19Sep 19, 2024Updated last year
- A simple class in C++ to load and read/write process memory, it comes with an example of how to decrypt the once popular demoscene e-zine…☆17Feb 5, 2015Updated 11 years ago
- Custom rules for yara-integrated scans☆16Jun 5, 2013Updated 12 years ago
- fix time for java application using javaAgent☆24Dec 3, 2017Updated 8 years ago
- A tool to locate the base address of arm32-little-end firmware binary. ##ARM固件加载基址定位☆37Feb 6, 2020Updated 6 years ago
- A CLI tool for querying passive DNS services☆42Dec 15, 2023Updated 2 years ago