mandiant / red_team_tool_countermeasures
☆2,659Updated last year
Alternatives and similar repositories for red_team_tool_countermeasures:
Users that are interested in red_team_tool_countermeasures are comparing it to the libraries listed below
- Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term o…☆2,437Updated 2 months ago
- Interesting APT Report Collection And Some Special IOC☆2,525Updated last week
- Investigate malicious Windows logon by visualizing and analyzing Windows event log☆2,866Updated 9 months ago
- Automated Adversary Emulation Platform☆5,979Updated last week
- Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mand…☆7,146Updated 6 months ago
- A toolset to make a system look as if it was the victim of an APT attack☆2,558Updated last year
- Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.☆4,462Updated this week
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆2,510Updated 8 months ago
- Attack and defend active directory using modern post exploitation adversary tradecraft activity☆4,557Updated 4 months ago
- Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Po…☆3,142Updated 2 months ago
- Wiki to collect Red Team infrastructure hardening resources☆4,238Updated 11 months ago
- Six Degrees of Domain Admin☆10,118Updated 3 weeks ago
- Guidance for mitigation web shells. #nsacyber☆971Updated last year
- Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)☆7,426Updated last month
- Automate the creation of a lab environment complete with security tooling and logging best practices☆4,716Updated 8 months ago
- A swiss army knife for pentesting networks☆8,654Updated last year
- Windows Exploit Suggester - Next Generation☆4,365Updated last week
- Trying to tame the three-headed dog.☆4,369Updated this week
- A collaborative, multi-platform, red teaming framework☆3,523Updated this week
- Covenant is a collaborative .NET C2 framework for red teamers.☆4,340Updated 8 months ago
- Automation for internal Windows Penetrationtest / AD-Security☆3,452Updated 4 months ago
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆5,736Updated 3 weeks ago
- Empire is a PowerShell and Python post-exploitation agent.☆7,573Updated 5 years ago
- A curated list of awesome YARA rules, tools, and people.☆3,739Updated last week
- Open EDR public repository☆2,383Updated last year
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆4,627Updated 4 years ago
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆2,086Updated this week
- MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, i…☆3,029Updated 7 months ago
- Adversary Emulation Framework☆9,104Updated this week
- Small and highly portable detection tests based on MITRE's ATT&CK.☆10,372Updated this week