A list of IOCs applicable to PoshC2
☆24Aug 3, 2020Updated 5 years ago
Alternatives and similar repositories for PoshC2_IOCs
Users that are interested in PoshC2_IOCs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Modules created by Nettitude for Metasploit☆11Jun 20, 2018Updated 7 years ago
- ATT&CK Sync is a Center for Threat-Informed Defense project that aims to improve the ability for organizations to consume MITRE ATT&CK® v…☆24Dec 5, 2025Updated 4 months ago
- Carve $MFT records from a chunk of data (for instance a memory dump)☆16Aug 21, 2016Updated 9 years ago
- ☆24Feb 18, 2025Updated last year
- Parser for Windows Scheduled Task files.☆13Apr 26, 2023Updated 2 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Indicators of Normality☆11Jul 22, 2022Updated 3 years ago
- Everything related to YARA☆16Feb 19, 2026Updated 2 months ago
- FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.☆77Jan 6, 2026Updated 3 months ago
- A tool to run and validate telemetry for Atomic Red Team tests☆16Mar 21, 2024Updated 2 years ago
- Tools for parsing Forensic images☆41Dec 14, 2018Updated 7 years ago
- ETWNetMonv3 is simple C# code for Monitoring TCP Network Connection via ETW & ETWProcessMon/2 is for Monitoring Process/Thread/Memory/Ima…☆41Jun 6, 2023Updated 2 years ago
- This script validates the most common Conditional Access policies in Microsoft 365.☆10May 27, 2024Updated last year
- Container for assorted volatility plugins.☆23Oct 22, 2013Updated 12 years ago
- C# Implementation of Jared Atkinson's Get-InjectedThread.ps1☆55Jul 11, 2021Updated 4 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- VTC - Velociraptor Timeline Creator☆19May 15, 2024Updated last year
- Repository for all cbapi example scripts☆16Sep 18, 2018Updated 7 years ago
- Volatility plugins created by the author☆44Oct 2, 2015Updated 10 years ago
- Publicly shareable windows event log message data☆28Nov 29, 2019Updated 6 years ago
- Azure function to insert MISP data in to Azure Sentinel☆34Oct 19, 2022Updated 3 years ago
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆154Apr 25, 2022Updated 3 years ago
- ☆33Feb 26, 2022Updated 4 years ago
- Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…☆40Apr 8, 2021Updated 5 years ago
- ☆23Dec 15, 2022Updated 3 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)☆108Feb 12, 2023Updated 3 years ago
- Zeek package to generate a SMB client fingerprint☆27May 5, 2020Updated 5 years ago
- Random hunting ordiented yara rules☆96Mar 27, 2023Updated 3 years ago
- Writeups of CTF challenges I do☆13Sep 29, 2019Updated 6 years ago
- Attacking and defending web and VPN session hijacking in Pulse Secure Connect☆14Oct 24, 2019Updated 6 years ago
- Quick ESXi Log Parser☆31Oct 20, 2025Updated 5 months ago
- ☆36Jan 11, 2023Updated 3 years ago
- A golang CLI tool to download malware from a variety of sources.☆151Jul 3, 2025Updated 9 months ago
- Carbon Black Response IR tool☆56Dec 10, 2020Updated 5 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Salesforce Policy Deviation Checker☆30Sep 30, 2020Updated 5 years ago
- Volatility Plugins☆22May 1, 2015Updated 10 years ago
- Imphash-like calculation on Golang binaries☆49Jul 2, 2022Updated 3 years ago
- ☆136Jun 11, 2021Updated 4 years ago
- A pentest reporting tool written in Python. Free yourself from Microsoft Word.☆14Jun 13, 2023Updated 2 years ago
- A collection of typical false positive indicators☆56Dec 5, 2020Updated 5 years ago
- RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…☆37Apr 6, 2022Updated 4 years ago