mandiant / pulsesecure_exploitation_countermeasures
☆23Updated last year
Related projects ⓘ
Alternatives and complementary repositories for pulsesecure_exploitation_countermeasures
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- ☆31Updated 2 years ago
- Yara rules☆20Updated last year
- ☆43Updated last year
- Repository for LNK stuff☆27Updated 2 years ago
- Generate YARA rules for OOXML documents.☆37Updated last year
- ☆15Updated 2 years ago
- C# User Simulation☆33Updated 2 years ago
- Links to malware-related YARA rules☆14Updated 2 years ago
- ☆12Updated 3 years ago
- ☆34Updated last year
- Scripts and lists to help generate YARA friendly string mutations☆19Updated last year
- Presentation materials for talks I've given.☆20Updated 5 years ago
- A set of tools for collecting forensic information☆26Updated 4 years ago
- ☆33Updated 3 years ago
- Modular malware analysis artifact collection and correlation framework☆52Updated 6 months ago
- A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.☆25Updated 2 years ago
- The repository accompanying the Buer Emulation workshop☆23Updated 3 years ago
- ☆21Updated last month
- ☆25Updated 3 years ago
- Specialized tool to dump Position Independent Code.☆21Updated 4 years ago
- Autopsy Module to analyze Registry Hives☆13Updated 2 years ago
- Steezy - Ghetto Yara Generation☆15Updated last year
- Generates YARA rules to detect malware using API hashing☆17Updated 3 years ago
- PS-TrustedDocuments: PowerShell script to handle information on trusted documents for Microsoft Office☆34Updated last year
- Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …☆13Updated 2 years ago
- Hundred Days of Yara Challenge�☆12Updated 2 years ago
- Machine Interrogation To Identify Gaps & Techniques for Execution☆32Updated 2 years ago