Alternatives and similar repositories for windows-sandbox-to-elastic:

Users that are interested in windows-sandbox-to-elastic are comparing it to the libraries listed below

• jfmaes / Emulation-Workshop
  The repository accompanying the Buer Emulation workshop
  ☆24Updated 3 years ago
• Retrospected / kerbmon
  Continuous kerberoast monitor
  ☆45Updated last year
• woanware / etw-event-dumper
  ☆33Updated 3 years ago
• fashionproof / RunHijackHunter
  ☆16Updated 4 years ago
• keydet89 / LNK
  Repository for LNK stuff
  ☆30Updated 2 years ago
• shlyuz / teamserver
  ☆12Updated 2 years ago
• matthw / malware_analysis
  ☆18Updated last year
• xforcered / DayBird
  Extension functionality for the NightHawk operator client
  ☆27Updated last year
• samisecure / LsassDumpReflectiveDll
  Dump Lsass Memory Using a Reflective Dll
  ☆14Updated 3 years ago
• MythicAgents / atlas
  ☆13Updated last year
• GhostManager / mythic_sync
  Automated activity logging utility for Mythic C2 v3.0+ with Ghostwriter v3.0+
  ☆17Updated 2 months ago
• WithSecureLabs / AMSIDetection
  AMSI detection PoC
  ☆31Updated 5 years ago
• djhohnstein / HookDetector
  Playing with PE's and Building Structures by Hand
  ☆22Updated 3 years ago
• Flangvik / collector
  Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.
  ☆19Updated 2 years ago
• nullsection / SharpETW-Patch
  ☆22Updated last year
• joeminicucci / RedIra
  A cloud automation system for Red Teams based on Terraform and Ansible
  ☆25Updated 4 years ago
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆37Updated 3 years ago
• RedTeamOperations / Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW
  CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"
  ☆49Updated 3 years ago
• Syslifters / split-bloodhound
  ☆18Updated last year
• NextronSystems / TA-aurora
  Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …
  ☆13Updated 2 years ago
• kyleavery / Multi-Stage-Mythic
  ☆25Updated 3 years ago
• RedSiege / SharpCollectionTemplate
  ☆14Updated last year
• jfmaes / talks-cons
  aggregated repo for all conferences and talks I am giving
  ☆17Updated 3 years ago
• NexusFuzzy / raccoon_config
  Scans a list of raccoon servers from Tria.ge and extracts the config
  ☆15Updated last year
• mandiant / apooxml
  Generate YARA rules for OOXML documents.
  ☆38Updated last year
• sneakid / DC30-PhineasTalk
  Slides for the talk we presented as UniPi at DefCon's Red Team Village
  ☆23Updated 2 years ago
• EspressoCake / MITRE_ATTACK_CLI
  CLI Search for Security Operators of MITRE ATT&CK URLs
  ☆16Updated 2 years ago
• vysecurity / PacketParser
  A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.
  ☆21Updated 9 months ago
• R-Secure / AMSI-Bypasses
  This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…
  ☆24Updated 2 years ago
• mdecrevoisier / Windows-authentication-brutforce-cheatsheet
  Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.
  ☆18Updated last year