nccgroup / mimikatz-detector-busylightLinks
USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is executed, a thread is spwaned by default that tries to locate one of the busylights that is supported. All HID devices are enumerated, if PID/VID is matching then packets are sent to flash the busylight in differen…
☆20Updated 3 years ago
Alternatives and similar repositories for mimikatz-detector-busylight
Users that are interested in mimikatz-detector-busylight are comparing it to the libraries listed below
Sorting:
- A mini project to exfiltrate data via QR codes☆19Updated 3 months ago
- Collection of generic YARA rules☆16Updated 3 months ago
- The repository accompanying the Buer Emulation workshop☆23Updated 4 years ago
- A Canary which fires when uninstalled☆34Updated 4 years ago
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆28Updated 2 years ago
- Firebase Domain Front Code☆21Updated 4 years ago
- Kibana app for RedELK☆18Updated 2 years ago
- Repository for LNK stuff☆31Updated 3 years ago
- Continuous kerberoast monitor☆45Updated 2 years ago
- ☆14Updated 4 years ago
- Tricard - Malware Sandbox Fingerprinting☆22Updated last year
- Tools for playing w/ CobaltStrike config - extractin, detection, processing, etc...☆29Updated 2 years ago
- ☆12Updated 3 years ago
- WMI SA stuffs☆30Updated 3 years ago
- ☆12Updated 4 years ago
- Defeating Anti-Debugging Techniques for Malware Analysis☆13Updated 3 years ago
- A collection of my presentation materials.☆17Updated last year
- Registry hive parsing the async way☆22Updated 3 weeks ago
- MITRE TTPs derived from Conti's leaked playbooks from XSS.IS☆39Updated 4 years ago
- Rapidly building a Windows 10 system to use for dynamic malware analysis (sandbox), sending data to Elastic Cloud.☆50Updated 2 years ago
- Proof-of-Concept to evade auditd by writing /proc/PID/mem☆23Updated 2 years ago
- ☆18Updated 2 years ago
- just manipulatin these here tokens yes sir nothing weird☆22Updated 3 years ago
- Scans a list of raccoon servers from Tria.ge and extracts the config☆15Updated 2 years ago
- A fast wordlist to nthash converter☆21Updated 3 years ago
- PoC MSI payload based on ASEC/AhnLab's blog post☆23Updated 3 years ago
- Tools for offensive security of NetBackup infrastructures☆42Updated 2 years ago
- ☆25Updated 3 years ago
- Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.☆19Updated 3 years ago
- Serving files with conditions, serverside keying and more.☆18Updated 3 years ago