matthw / malware_analysisLinks
☆18Updated last year
Alternatives and similar repositories for malware_analysis
Users that are interested in malware_analysis are comparing it to the libraries listed below
Sorting:
- Searching .evtx logs for remote connections☆23Updated last year
- ☆31Updated 2 years ago
- This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…☆24Updated 2 years ago
- ☆14Updated last year
- freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package☆33Updated 2 years ago
- ☆27Updated 6 months ago
- Python tool to find vulnerable AD object and generating csv report☆26Updated 2 years ago
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆32Updated last month
- Perform Windows domain enumeration via LDAP☆36Updated 3 years ago
- OSED Practice binary☆24Updated last year
- A tool to exchange decryption keys for command and control (C2) beacons and implants through DNS records.☆39Updated 2 years ago
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆31Updated 3 months ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 2 years ago
- Docker container for running CobaltStrike 4.10☆37Updated 9 months ago
- ☆17Updated last year
- ☆48Updated 2 years ago
- Extension functionality for the NightHawk operator client☆27Updated last year
- Items related to the RedELK workshop given at security conferences☆29Updated last year
- ☆22Updated last year
- Aggressor script to automatically download and load an arsenal of open source and private Cobalt Strike tooling.☆25Updated 10 months ago
- Just another useless C2 occupying space in some HDD somewhere.☆20Updated last year
- Proof-of-Concept to evade auditd by writing /proc/PID/mem☆21Updated last year
- ☆41Updated 11 months ago
- ☆23Updated last year
- A simple rpc2socks alternative in pure Go.☆28Updated 11 months ago
- some sploits☆17Updated 9 months ago
- A cloud automation system for Red Teams based on Terraform and Ansible☆23Updated 4 years ago
- ☆23Updated 3 years ago
- a short C code POC to gain persistence and evade sysmon event code registry (creation, update and deletion) REG_NOTIFY_CLASS Registry Cal…☆51Updated last year
- Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil☆21Updated 2 years ago