limbenjamin / nTimetools

Related projects ⓘ

Alternatives and complementary repositories for nTimetools

• NVISOsecurity / blogposts
  A repo to house files for our blogposts on blog.nviso.eu
  ☆65Updated 2 months ago
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆90Updated 2 years ago
• ignacioj / WhacAMole
  Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…
  ☆26Updated 2 months ago
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆30Updated 2 years ago
• wietze / windows-dll-env-hijacking
  Project for identifying executables and DLLs vulnerable to environment-variable based DLL hijacking.
  ☆56Updated 2 years ago
• 0xjxd / SquirrelWaffle-From-Maldoc-to-Cobalt-Strike
  ☆11Updated 3 years ago
• 0xThiebaut / PCAPeek
  A proof-of-concept re-assembler for reverse VNC traffic.
  ☆25Updated last year
• Immersive-Labs-Sec / BruteRatel-DetectionTools
  A collection of Tools and Rules for decoding Brute Ratel C4 badgers
  ☆62Updated 2 years ago
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆72Updated 2 years ago
• c3rb3ru5d3d53c / signatures
  Community Detection Signature Build and Distribution Pipeline for YARA, Suricata, Snort and Sigma
  ☆27Updated last year
• stairwell-inc / cobalt-strike-stager-parser
  ☆34Updated last year
• jsecurity101 / LDAPMon
  ☆44Updated last year
• w1u0u1 / smb2os
  Use smb2 protocol to detect remote computer os version, support win7/server2008-win10/server2019
  ☆59Updated 3 years ago
• blackarrowsec / malware-research
  Malware campaigns and APTs research by BlackArrow
  ☆18Updated 4 years ago
• trustedsec / tscopy
  ☆91Updated 2 years ago
• Cobalt-Strike / ZeroLogon-BOF
  ☆10Updated 4 years ago
• NextronSystems / thunderstorm-collector
  THOR Thunderstorm Collectors
  ☆24Updated 2 months ago
• nccgroup / UninstalledAppCanary
  A Canary which fires when uninstalled
  ☆34Updated 3 years ago
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆37Updated last year
• CCob / PinSwipe
  Smart Card PIN swiping DLL
  ☆74Updated 4 years ago
• MITRECND / picaboo
  Specialized tool to dump Position Independent Code.
  ☆21Updated 4 years ago
• nullsection / SharpETW-Patch
  ☆22Updated 11 months ago
• Maff1t / WindowsPermsPoC
  A simple PoC to demonstrate that is possible to write Non writable memory and execute Non executable memory on Windows
  ☆52Updated 3 years ago
• rvrsh3ll / RendezvousRAT
  Self-healing RAT utilizing libp2p
  ☆86Updated 3 years ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆67Updated 8 months ago
• slaughterjames / excelpeek
  ☆37Updated 2 years ago
• lawrenceamer / TChopper
  conduct lateral movement attack by leveraging unfiltered services display name to smuggle binaries as chunks into the target machine
  ☆49Updated 3 years ago
• ryanmrestivo / blue-team
  Some portable tools, some YARA, some Python, and a little bit of love. Not all of these tools can be used in incident response. Use PEs…
  ☆33Updated 11 months ago
• naksyn / talks
  Repo containing my public talks
  ☆22Updated last year