optiv / Yara-Rules
☆9Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for Yara-Rules
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- Building ActiveDirectory Lab for practicing various attack vectors used during Red Team engagement.☆36Updated 4 years ago
- Scripts to automate standing up apache2 with mod_rewrite in front of C2 servers.☆46Updated 3 years ago
- Python Script for SAML2 Authentication Passwordspray☆37Updated last year
- This is a repo for fetching Applocker event log by parsing the win-event log☆30Updated 2 years ago
- Triaging Windows event logs based on SANS Poster☆37Updated last year
- Searching .evtx logs for remote connections☆23Updated last year
- A pair of scripts to import session and local group information that has been collected from alternate data sources into BloodHound's Neo…☆19Updated 2 years ago
- A mini project to exfiltrate data via QR codes☆19Updated 6 months ago
- Threat Mitigation Strategies☆25Updated last year
- BloodHound Data Scanner☆43Updated 4 years ago
- Repository for LNK stuff☆27Updated 2 years ago
- Reproducible and extensible BloodHound playbooks☆42Updated 4 years ago
- Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…☆17Updated 3 years ago
- Extracts Azure authentication tokens from PowerShell process minidumps.☆23Updated last year
- Converts / formats Rubeus kerberoasting output into Hashcat usable format☆12Updated 4 years ago
- BloodCheck enables Red and Blue Teams to manage multiple Neo4j databases and run Cypher queries against a BloodHound dataset.☆17Updated 3 years ago
- BloodHound Cypher Queries Ported to a Jupyter Notebook☆53Updated 4 years ago
- Automatically perform advanced NTLM hash relay attacks☆14Updated 2 years ago
- Pwnage☆15Updated 2 years ago
- Active DIrectory Lab for Pentesting Practice☆24Updated 2 years ago
- Parses Nessus .nessus files for exploitable vulnerabilities and outputs a report file in format MM-DD-YYYY-nessus.csv☆38Updated last year
- Service Enumeration C# .NET Assembly☆59Updated 3 years ago
- Continuous kerberoast monitor☆43Updated last year
- Cobalt Strike/C2 Servers☆13Updated 3 years ago
- A PowerShell script that checks for dangerous ACLs on system hives and shadows☆28Updated 3 years ago
- Tool to perform lateral movement between AAD joined devices☆52Updated 2 years ago
- Ansible role to install Cobalt Strike and optionally configure as Teamserver☆31Updated 3 years ago
- ☆24Updated 3 years ago
- Ansible Cobalt Strike (Docker)☆14Updated 2 years ago