Alternatives and similar repositories for Misc-Research

Users that are interested in Misc-Research are comparing it to the libraries listed below

• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆96Updated 3 months ago
• joeavanzato / RetrievIR
  PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.
  ☆107Updated last year
• Ahmed-AL-Maghraby / Windows-Registry-Analysis-Cheat-Sheet
  ☆165Updated 2 years ago
• gtworek / VolatileDataCollector
  ☆203Updated 11 months ago
• knight0x07 / OneNoteAnalyzer
  A C# based tool for analysing malicious OneNote documents
  ☆116Updated 2 years ago
• Cyb3r-Monk / ACCD
  Active C&C Detector
  ☆156Updated 2 years ago
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆68Updated last year
• LOLESXi-Project / LOLESXi
  LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…
  ☆132Updated last week
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆90Updated last year
• olafhartong / BamboozlEDR
  A comprehensive ETW (Event Tracing for Windows) event generation tool designed for testing and research purposes.
  ☆244Updated last month
• LETHAL-FORENSICS / Collect-MemoryDump
  Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR
  ☆248Updated 6 months ago
• AirbusProtect / AD-Canaries
  The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…
  ☆255Updated last year
• forensicxlab / VISION-ProcMon
  A ProcessMonitor visualization application written in rust.
  ☆184Updated 2 years ago
• synacktiv / ntdissector
  ☆160Updated 4 months ago
• Mayyhem / Maestro
  Abusing Azure services over C2
  ☆361Updated 4 months ago
• MazX0p / ThreatHound
  ☆160Updated last year
• SafeBreach-Labs / DoubleDrive
  A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files
  ☆126Updated last year
• CyberSecurityUP / EDR-Assessment
  This repository contains a comprehensive testing designed for evaluating the performance and resilience of Endpoint Detection and Respons…
  ☆61Updated last year
• dodo-sec / Malware-Analysis
  ☆136Updated 2 years ago
• jonny-jhnson / JonMon
  ☆242Updated 4 months ago
• S3N4T0R-0X0 / APT28-Adversary-Simulation
  This is a simulation of attack by Fancy Bear group (APT28) targeting high-ranking government officials Western Asia and Eastern Europe
  ☆36Updated last year
• deepinstinct / NoFilter
  ☆300Updated 11 months ago
• floesen / EventLogCrasher
  ☆189Updated last year
• LuccaSA / PingCastle-Notify
  Monitor your PingCastle scans to highlight the rule diff between two scans
  ☆152Updated 2 weeks ago
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆83Updated last year
• LuemmelSec / Custom-BloodHound-Queries
  ☆179Updated 10 months ago
• TH3xACE / EDR-Test
  Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike [Purple Team].
  ☆157Updated 2 years ago
• XForceIR / SideLoadHunter
  ☆26Updated 3 years ago
• QueenSquishy / plague
  Default Detections for EDR
  ☆96Updated last year
• synacktiv / gpoParser
  gpoParser is a tool designed to extract and analyze configurations applied through Group Policy Objects (GPOs) in an Active Directory env…
  ☆292Updated last month