Alternatives and similar repositories for Misc-Research:

Users that are interested in Misc-Research are comparing it to the libraries listed below

• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆76Updated 6 months ago
• ajm4n / DLLHound
  Find potential DLL Sideloads on your windows computer
  ☆176Updated 2 months ago
• Mayyhem / Maestro
  Abusing Intune for Lateral Movement over C2
  ☆327Updated last month
• sensepost / mydumbedr
  ☆114Updated last year
• jaredcatkinson / MalwareMorphology
  ☆80Updated 4 months ago
• SafeBreach-Labs / DoubleDrive
  A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files
  ☆123Updated 9 months ago
• jsecurity101 / JonMon
  ☆216Updated last month
• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆93Updated last year
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆159Updated 3 months ago
• CCob / Shwmae
  ☆146Updated last month
• synacktiv / ntdissector
  ☆139Updated 7 months ago
• LOLESXi-Project / LOLESXi
  LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…
  ☆121Updated last month
• deepinstinct / NoFilter
  ☆297Updated 4 months ago
• itaymigdal / LOLSpoof
  An interactive shell to spoof some LOLBins command line
  ☆184Updated last year
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆195Updated 9 months ago
• Cyb3r-Monk / ACCD
  Active C&C Detector
  ☆152Updated last year
• 0xJs / CARTP-cheatsheet
  Azure AD cheatsheet for the CARTP course
  ☆108Updated 2 years ago
• Malcrove / SeamlessPass
  A tool leveraging Kerberos tickets to get Microsoft 365 access tokens using Seamless SSO
  ☆168Updated 6 months ago
• joeavanzato / RetrievIR
  PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.
  ☆100Updated 6 months ago
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆81Updated 10 months ago
• amjcyber / EDRNoiseMaker
  Detect WFP filters blocking EDR communications
  ☆85Updated last year
• dr4k0nia / tooling-playground
  A collection of small scripts and tools for deobfuscation and malware analysis.
  ☆66Updated last year
• LOLAD-Project / LOLAD-Project.github.io
  https://lolad-project.github.io/
  ☆72Updated 2 months ago
• XForceIR / SideLoadHunter
  ☆25Updated 2 years ago
• CCob / DRSAT
  Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…
  ☆229Updated 2 months ago
• synacktiv / Invoke-RunAsWithCert
  A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
  ☆144Updated 10 months ago
• Tanguy-Boisset / bloodhound-automation
  Automatically run and populate a new instance of BH CE
  ☆69Updated last week
• QueenSquishy / plague
  Default Detections for EDR
  ☆96Updated last year
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆73Updated last year