peasead / windows-sandbox-to-elastic

Related projects ⓘ

Alternatives and complementary repositories for windows-sandbox-to-elastic

• Retrospected / kerbmon
  Continuous kerberoast monitor
  ☆43Updated last year
• jfmaes / Emulation-Workshop
  The repository accompanying the Buer Emulation workshop
  ☆23Updated 3 years ago
• IceMoonHSV / Sim
  C# User Simulation
  ☆33Updated 2 years ago
• jfmaes / Parsers
  parsers to make life easier
  ☆12Updated 4 years ago
• keydet89 / LNK
  Repository for LNK stuff
  ☆27Updated 2 years ago
• fashionproof / RunHijackHunter
  ☆15Updated 3 years ago
• LaresLLC / AzureTokenExtractor
  Extracts Azure authentication tokens from PowerShell process minidumps.
  ☆23Updated last year
• 001SPARTaN / SaltedCaramel
  Apfell implant written in C#.
  ☆8Updated 3 years ago
• PwnDexter / FindFrontableDomains
  Forked and updated with some additional features over the original
  ☆16Updated 3 years ago
• nettitude / PoshC2_IOCs
  A list of IOCs applicable to PoshC2
  ☆24Updated 4 years ago
• HuskyHacks / RustyTokenManipulation
  just manipulatin these here tokens yes sir nothing weird
  ☆22Updated 2 years ago
• whichbuffer / Antidebug
  Defeating Anti-Debugging Techniques for Malware Analysis
  ☆13Updated 2 years ago
• FuzzySecurity / Presentations
  A collection of my presentation materials.
  ☆16Updated 6 months ago
• samisecure / LsassDumpReflectiveDll
  Dump Lsass Memory Using a Reflective Dll
  ☆14Updated 2 years ago
• WithSecureLabs / AMSIDetection
  AMSI detection PoC
  ☆30Updated 4 years ago
• two06 / EvtMute
  Apply a filter to the events being reported by windows event logging
  ☆15Updated 4 years ago
• chvancooten / nimbuild
  A Docker container used to easily compile Nim binaries generated by my tools (NimPackt and NimPlant)
  ☆14Updated last year
• cedowens / Mod_Rewrite_Automation
  Scripts to automate standing up apache2 with mod_rewrite in front of C2 servers.
  ☆46Updated 3 years ago
• mandiant / apooxml
  Generate YARA rules for OOXML documents.
  ☆37Updated last year
• RiccardoAncarani / bloodhound-playbook
  Reproducible and extensible BloodHound playbooks
  ☆42Updated 4 years ago
• hausec / CobaltStrikeToGhostWriter
  Log converter from CS log to Ghostwriter CSV
  ☆29Updated 3 years ago
• MythicAgents / atlas
  ☆13Updated 10 months ago
• NextronSystems / TA-aurora
  Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …
  ☆13Updated 2 years ago
• shantanu561993 / Awesome_Firebase_DomainFront
  Firebase Domain Front Code
  ☆21Updated 3 years ago
• skelsec / pypykatz-volatility3
  pypykatz plugin for volatility3 framework
  ☆31Updated 7 months ago
• joeminicucci / RedIra
  A cloud automation system for Red Teams based on Terraform and Ansible
  ☆24Updated 3 years ago
• nccgroup / mimikatz-detector-busylight
  USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is exec…
  ☆19Updated 2 years ago
• kyleavery / scarecrow_wrapper
  ☆36Updated 3 years ago
• StefanKelm / yara-rules
  Links to malware-related YARA rules
  ☆14Updated 2 years ago