☆194Feb 6, 2024Updated 2 years ago
Alternatives and similar repositories for Qakbot
Users that are interested in Qakbot are comparing it to the libraries listed below
Sorting:
- ☆31Nov 28, 2023Updated 2 years ago
- IOC Collection 2022☆57Mar 7, 2023Updated 3 years ago
- ☆15Oct 3, 2024Updated last year
- ☆512Oct 7, 2024Updated last year
- ☆129Jan 29, 2024Updated 2 years ago
- Here are some tools I developed to help analyze malware☆11Nov 8, 2023Updated 2 years ago
- Zeroday Microsoft Exchange Server checker (Virtual Patching checker)☆67Oct 1, 2022Updated 3 years ago
- ☆96May 5, 2025Updated 10 months ago
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆141Nov 19, 2023Updated 2 years ago
- Automatically created C2 Feeds☆667Updated this week
- DNS Misconfiguration : S0x4 - Same Site Scripting Scanner☆15Jan 20, 2021Updated 5 years ago
- ☆14Aug 21, 2022Updated 3 years ago
- A repository dedicated to tracking ransomware families based on leaked builders.☆22Apr 17, 2024Updated last year
- ☆22Jun 2, 2023Updated 2 years ago
- Sigma rules to share with the community☆124Jan 29, 2025Updated last year
- Threat Hunting tool about Sysmon and graphs☆337May 28, 2023Updated 2 years ago
- Indicators of Compromise (IOCs) accompanying HP Threat Research blog posts and reports.☆29Apr 10, 2024Updated last year
- Sophos-originated indicators-of-compromise from published reports☆653Jan 16, 2026Updated last month
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆130Apr 6, 2024Updated last year
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆341Dec 3, 2025Updated 3 months ago
- Publicly shareable windows event log message data☆28Nov 29, 2019Updated 6 years ago
- KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunt…☆1,642Feb 27, 2026Updated last week
- Signatures and IoCs from public Volexity blog posts.☆365Dec 4, 2025Updated 3 months ago
- APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the …☆1,402Nov 7, 2024Updated last year
- The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifa…☆647Nov 7, 2025Updated 4 months ago
- ☆10Apr 2, 2022Updated 3 years ago
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Feb 6, 2025Updated last year
- ☆160Nov 26, 2023Updated 2 years ago
- Active C2 IoCs☆99Nov 28, 2022Updated 3 years ago
- ☆225Sep 8, 2022Updated 3 years ago
- Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows…☆2,056Dec 11, 2024Updated last year
- Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).☆803Jan 14, 2026Updated last month
- #ThreatHunting #DFIR #Malware #Detection Mind Maps☆304Nov 13, 2021Updated 4 years ago
- This is a simple example of DLL hijacking enabling proxy execution.☆70Apr 18, 2023Updated 2 years ago
- This script will generate hashes (MD5, SHA1, SHA256), submit the MD5 to Virus Total, and produce a text file with the results.☆15Jul 13, 2023Updated 2 years ago
- Elastic Security detection content for Endpoint☆1,382Feb 26, 2026Updated last week
- Interesting APT Report Collection And Some Special IOCs☆2,929Updated this week
- Reportly is an AzureAD user activity report tool.☆96Aug 14, 2023Updated 2 years ago
- Awesome list of keywords and artifacts for Threat Hunting sessions☆641Aug 4, 2025Updated 7 months ago