securityjoes / ThreatResearch
☆62Updated last year
Related projects ⓘ
Alternatives and complementary repositories for ThreatResearch
- Yara Rules for Modern Malware☆67Updated 8 months ago
- ☆130Updated last year
- A comprehensive workshop aimed to equip participants with an in-depth understanding of modern Command and Control (C2) concepts, focusing…☆98Updated last year
- Hive v5 file decryption algorithm☆34Updated last year
- ☆76Updated 6 months ago
- ☆82Updated 2 years ago
- Ansible + Vagrant + Hyper-V + Vulnerable AD 😎☆89Updated 3 months ago
- Free training course offered at Hack Space Con 2023☆132Updated last year
- A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files☆123Updated 5 months ago
- Lazarus analysis tools and research report☆55Updated 11 months ago
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆110Updated 7 months ago
- All kinds of tiny shells☆59Updated last year
- A ProcessMonitor visualization application written in rust.☆176Updated last year
- Ping-based Information Lookup and Outbound Transfer☆75Updated 7 months ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆49Updated 6 months ago
- ☆64Updated last year
- A C# based tool for analysing malicious OneNote documents☆107Updated last year
- Bash Script to extract GNU/Linux forensic artifacts for digital forensic analysis and incident response.☆43Updated last year
- Malware vulnerability intel tool for third-party attackers☆113Updated 3 weeks ago
- The most average C2 ever (MACE)☆96Updated 2 years ago
- Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…☆75Updated 3 years ago
- This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.☆72Updated 2 months ago
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆94Updated last year
- C2 Active Scanner☆48Updated 5 months ago
- MITRE TTPs derived from Conti's leaked playbooks from XSS.IS☆35Updated 3 years ago
- A suite of tools to disrupt campaigns using the Sliver C2 framework.☆248Updated last year
- ☆37Updated last year
- ☆36Updated 7 months ago