nccgroup / mimikatz-detector-busylight

USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is executed, a thread is spwaned by default that tries to locate one of the busylights that is supported. All HID devices are enumerated, if PID/VID is matching then packets are sent to flash the busylight in differen…

☆19

Alternatives and similar repositories for mimikatz-detector-busylight:

Users that are interested in mimikatz-detector-busylight are comparing it to the libraries listed below

jfmaes / Emulation-Workshop
The repository accompanying the Buer Emulation workshop
☆23Updated 3 years ago
inzlain / sameuser
Helper script for BloodHound to automatically add relationships between multiple accounts owned by the same individual
☆13Updated 2 years ago
shantanu561993 / Awesome_Firebase_DomainFront
Firebase Domain Front Code
☆21Updated 3 years ago
Flangvik / collector
Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.
☆19Updated 2 years ago
elceef / yara-rulz
Collection of generic YARA rules
☆15Updated 7 months ago
hotnops / mythic-sync
A tool to sync mythic events with ghostwriter oplog.
☆12Updated last month
fastlorenzo / redelk-kibana-app
Kibana app for RedELK
☆16Updated last year
keydet89 / LNK
Repository for LNK stuff
☆28Updated 2 years ago
StrangerealIntel / DeltaFlare
☆12Updated 3 years ago
automate-tim / conference-materials
Speaking materials from conferences I've given
☆9Updated 2 years ago
LaresLLC / AzureTokenExtractor
Extracts Azure authentication tokens from PowerShell process minidumps.
☆23Updated last year
stairwell-inc / cobalt-strike-stager-parser
☆34Updated 2 years ago
NVISOsecurity / cobalt-strike-notifier
☆13Updated 3 years ago
montysecurity / InfraSpyder
Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
☆27Updated last year
diljith369 / nim4Pentest
My nim learning experiments
☆11Updated 2 years ago
outflanknl / RedFile
Serving files with conditions, serverside keying and more.
☆18Updated 2 years ago
vysecurity / PacketParser
A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.
☆21Updated 6 months ago
two06 / EvtMute
Apply a filter to the events being reported by windows event logging
☆15Updated 4 years ago
t94j0 / ansible-role-mythic
Ansible role that Installs Mythic
☆14Updated 6 months ago
sourcefrenchy / goqrexfil
A mini project to exfiltrate data via QR codes
☆19Updated last month
VirtueSecurity / benigncertain-monitor
☆19Updated 4 years ago
Cobalt-Strike / ZeroLogon-BOF
☆11Updated 4 years ago
Syslifters / split-bloodhound
☆17Updated last year
Gr1mmie / WMIEnum
WMI SA stuffs
☆29Updated 2 years ago
shlyuz / teamserver
☆12Updated 2 years ago
NVISOsecurity / FileSearcher
☆23Updated 4 years ago
NexusFuzzy / raccoon_config
Scans a list of raccoon servers from Tria.ge and extracts the config
☆15Updated last year