Rapidly building a Windows 10 system to use for dynamic malware analysis (sandbox), sending data to Elastic Cloud.
☆51Sep 1, 2023Updated 2 years ago
Alternatives and similar repositories for windows-sandbox-to-elastic
Users that are interested in windows-sandbox-to-elastic are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Items related to the RedELK workshop given at security conferences☆29Sep 28, 2023Updated 2 years ago
- A Dockerized build pipeline for custom Windows x64 shellcode☆55Dec 12, 2025Updated 6 months ago
- Ansible roles to deploy RedELK☆23Feb 15, 2023Updated 3 years ago
- Simple reverse ICMP shell☆14Apr 30, 2024Updated 2 years ago
- OptionsBleed (CVE-2017-9798) PoC / Scanner☆19May 21, 2024Updated 2 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.☆11May 17, 2024Updated 2 years ago
- A Framework to Automatically Extract Indicators of Compromise (IoCs) from Twitter☆15Dec 9, 2019Updated 6 years ago
- A Sigma based detection pipeline☆12Dec 15, 2023Updated 2 years ago
- Info related to the Outflank training: Microsoft Office Offensive Tradecraft☆52May 16, 2024Updated 2 years ago
- GeoWordlists is a tool to generate wordlists of passwords containing cities at a defined distance around the client city.☆11Nov 24, 2023Updated 2 years ago
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Feb 6, 2025Updated last year
- Rubber Ducky powered by NeoKey☆30Jun 3, 2024Updated 2 years ago
- ☆12Apr 22, 2022Updated 4 years ago
- Build K3s image using Packer☆13May 26, 2026Updated last month
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Dont Gamble with Risk☆14Mar 4, 2024Updated 2 years ago
- Installing wazuh SIEM Unified XDR and SIEM protection☆34Jun 3, 2025Updated last year
- Small visualizator for PE files☆70Sep 20, 2023Updated 2 years ago
- ☆33Feb 26, 2022Updated 4 years ago
- Extract LPD/LPR print job(s) from wireshark capture file☆12May 2, 2023Updated 3 years ago
- ☆27Oct 15, 2025Updated 8 months ago
- havoc kaine plugin to mitigate PAGE_GUARD protected image headers using JOP gadgets☆43Aug 6, 2024Updated last year
- maldev obviously☆28May 5, 2025Updated last year
- various methods of making API calls☆19Feb 1, 2025Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A wrapper for capstone for bearparser☆16Oct 8, 2025Updated 9 months ago
- MFT Fast Transcoder is a fast forensic tool to analyze MFT of NTFS partitions.☆12May 21, 2026Updated last month
- A script that parses PowerView's output for GPO analysis. Integrated into bloodhound to find misconfigurations of URA, SMB signing etc☆15Feb 9, 2020Updated 6 years ago
- Generates a detailed CSV file containing Sigma Rules statistics for each service or category, and each level, offering a holistic view of…☆10Dec 22, 2023Updated 2 years ago
- ☆14Apr 20, 2022Updated 4 years ago
- A collection of Cortex Analyzers and Responders for TheHive/Cortex☆13Jan 29, 2020Updated 6 years ago
- IoT Malware Similarity Analysis Platform☆43Jan 30, 2022Updated 4 years ago
- Small enough to carry on your back (Backpack) 🎒💻☆32Jun 3, 2023Updated 3 years ago
- Defeating Anti-Debugging Techniques for Malware Analysis☆12Oct 1, 2022Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A Large Action Model designed to operate on MacOS or Windows which interacts with common C2 interfaces such as Cobalt Strike, Havoc, or B…☆26Feb 29, 2024Updated 2 years ago
- ☆265Jun 7, 2025Updated last year
- Unpacker for donut shellcode☆22Jun 20, 2020Updated 6 years ago
- Passworld is a fully customizable wordlist generator☆16Sep 13, 2024Updated last year
- Malkom is an extensible and simple similarity graph generator for malware analysis aimed at helping analysts visualize and cluster sets o…☆17Apr 6, 2023Updated 3 years ago
- Use TpAllocWork, TpPostWork and TpReleaseWork to execute machine code☆24Mar 13, 2023Updated 3 years ago
- MacOS Shared Library to Shellcode Loader☆70Feb 23, 2026Updated 4 months ago