malvuln / RansomDLLsLinks
Reference list for my Ransomware exploitation research. Lists current DLLs I have seen to date that some ransomware search for, which I have used successfully to hijack and intercept vulnerable strains executing arbitrary code pre-encryption.
☆11Updated 2 years ago
Alternatives and similar repositories for RansomDLLs
Users that are interested in RansomDLLs are comparing it to the libraries listed below
Sorting:
- Scans a list of raccoon servers from Tria.ge and extracts the config☆15Updated 2 years ago
- Configuration Extractor for BlackCat Ransomware☆30Updated 3 years ago
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated 2 years ago
- Hive v5 file decryption algorithm☆34Updated 2 years ago
- Static Decryptor for IcedID Malware☆18Updated 2 years ago
- A full analysis report detailing as much as possible of a Malware or a Threat☆29Updated 11 months ago
- ☆24Updated 2 years ago
- ☆14Updated 2 years ago
- A small tool that helps Incident responders and SOC analysts do a quick and initial analysis/assessment of malicious files☆26Updated 2 years ago
- Track previous changes on specific AD accounts (users, computers) and Groups (online DC), even if event logs were wiped/not collected (e.…☆16Updated 3 months ago
- MITRE TTPs derived from Conti's leaked playbooks from XSS.IS☆38Updated 3 years ago
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- ☆32Updated 2 years ago
- Slides from my talk at the Adversary Village, Defcon 30☆29Updated 2 years ago
- Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's☆62Updated 5 months ago
- Virus Total Free - IOC parser and report generator☆23Updated 2 years ago
- Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …☆13Updated 2 years ago
- PDump is a project for dumping leaked credentials from DEHASHED☆16Updated last year
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆15Updated 4 years ago
- ☆34Updated 2 years ago
- A not so awesome list of adversary emulation gems for aspiring red/blue/purple teamers☆14Updated 2 years ago
- A project created with an aim to emulate and test exfiltration of data over different network protocols.☆31Updated 2 years ago
- ☆27Updated 6 months ago
- Operating System testbed created with Terraform to test payloads, programs and compatibility on different OS versions. Supports AWS and A…☆19Updated last year
- ☆14Updated last year
- Database of backdoor passwords used by Malware, uncovered by the Malvuln project.☆26Updated 7 months ago
- Malware campaigns and APTs research by BlackArrow☆18Updated 5 years ago
- These FLARE-VM configuration files are designed to be help setup a purpose-built installation, remove unnecessary packages to help stream…☆14Updated last year
- The repository accompanying the Buer Emulation workshop☆24Updated 3 years ago
- AutoPoC Generator HoneyPoC☆35Updated last month