snapattack / bpfdoor-scanner
BPFDoor Scanner - Check for Compromised Hosts
☆19Updated 2 years ago
Alternatives and similar repositories for bpfdoor-scanner:
Users that are interested in bpfdoor-scanner are comparing it to the libraries listed below
- Dumping credentials through windbg and pykd☆40Updated last year
- A mini project to exfiltrate data via QR codes☆19Updated 3 weeks ago
- The repository accompanying the Buer Emulation workshop☆24Updated 3 years ago
- ☆23Updated 4 years ago
- ☆27Updated 3 years ago
- ☆27Updated 5 years ago
- Static Decryptor for IcedID Malware☆18Updated 2 years ago
- A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies☆32Updated 2 years ago
- Specialized tool to dump Position Independent Code.☆21Updated 4 years ago
- "ImpELF: A Python-based ELF hashing utility that generates unique fingerprints for ELF binaries using their imported functions and librar…☆15Updated last year
- ☆12Updated 4 years ago
- Royal Road RTF Weaponizer object decoder☆24Updated 6 months ago
- Tools for playing w/ CobaltStrike config - extractin, detection, processing, etc...☆27Updated last year
- Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing☆21Updated last year
- Finds imports that could be exploited, still requires manual analysis.☆27Updated 2 years ago
- ☆22Updated last year
- ☆34Updated 2 years ago
- The Multiplatform Linux Sandbox☆15Updated last year
- ☆12Updated 2 years ago
- AMSI detection PoC☆31Updated 4 years ago
- ☆25Updated last month
- Tricard - Malware Sandbox Fingerprinting☆20Updated last year
- NimSkrull is an adaption from the original Skrull malware anti-copy DRM. Only for the anti-copy feature. (https://github.com/aaaddress1/S…☆12Updated last year
- Adapt practically persistence steadiness strategies working at Windows 10 utilized by sponsored nation-state threat actors, as Turla, Pro…☆22Updated 4 years ago
- ☆26Updated 4 months ago
- USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is exec…☆20Updated 2 years ago
- Configuration Extractor for BlackCat Ransomware☆30Updated 3 years ago
- Released alongside with a talk at REcon 2023, TheRestarter is an interactive command-line tool is designed to interact with the Windows …☆14Updated last year
- An injector that use PT_LOAD technique☆12Updated 2 years ago
- Slides from my talk at the Adversary Village, Defcon 30☆29Updated 2 years ago