ssnkhan/adversarial-threat-modelling external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

ssnkhan/adversarial-threat-modelling

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ssnkhan/adversarial-threat-modelling)

Close

ssnkhan / adversarial-threat-modellingView on GitHubMore

• External links
• Readme badge

Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop

☆78Jan 19, 2026Updated 4 months ago

Alternatives and similar repositories for adversarial-threat-modelling

Users that are interested in adversarial-threat-modelling are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• mobdk / WinSpoof

  View on GitHub
  Use TpAllocWork, TpPostWork and TpReleaseWork to execute machine code
  ☆24Mar 13, 2023Updated 3 years ago
• carlnykvist / Timestamp_BOF

  View on GitHub
  ☆19Aug 25, 2022Updated 3 years ago
• dobin / ttpExtractor

  View on GitHub
  Extract the Procedures (TTP) from CTI reports
  ☆18Dec 13, 2025Updated 5 months ago
• slemire / bof-adopt

  View on GitHub
  BOF implementation of Adopt. Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.
  ☆17Jul 22, 2022Updated 3 years ago
• Kudaes / Puzzle

  View on GitHub
  Set of PoC to abuse Windows minifilters functionality
  ☆83May 1, 2026Updated 2 weeks ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• OTRF / bloodhound-notebooks

  View on GitHub
  Notebooks created to attack and secure Active Directory environments
  ☆27Nov 18, 2019Updated 6 years ago
• JoasASantos / Adversary-Emulation-Matrix

  View on GitHub
  ☆65Jun 5, 2021Updated 4 years ago
• ch33r10 / EnterprisePurpleTeaming

  View on GitHub
  Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.
  ☆668Jun 14, 2023Updated 2 years ago
• lasq88 / socgholish_finder

  View on GitHub
  ☆14Mar 9, 2023Updated 3 years ago
• ropbear / CLMBypass

  View on GitHub
  Bypass Constrained Language Mode in PowerShell
  ☆29May 21, 2019Updated 6 years ago
• vadim-hunter / Detection-Ideas-Rules

  View on GitHub
  Detection Ideas & Rules repository.
  ☆178Sep 10, 2021Updated 4 years ago
• airbus-cert / Invoke-Bof

  View on GitHub
  Load any Beacon Object File using Powershell!
  ☆262Dec 9, 2021Updated 4 years ago
• FalconForceTeam / SysWhispers2BOF

  View on GitHub
  Script to use SysWhispers2 direct system calls from Cobalt Strike BOFs
  ☆125May 24, 2022Updated 3 years ago
• k3idii / CobaltStrike-Tools

  View on GitHub
  Tools for playing w/ CobaltStrike config - extractin, detection, processing, etc...
  ☆28Apr 13, 2023Updated 3 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• SparkITSolutions / phoenix

  View on GitHub
  Cuckoo Sandbox is an automated dynamic malware analysis system
  ☆107May 22, 2020Updated 5 years ago
• MythicAgents / apfell

  View on GitHub
  JavaScript for Automation (JXA) macOS agent
  ☆101Feb 19, 2026Updated 3 months ago
• olafhartong / ATTACKdatamap

  View on GitHub
  A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework
  ☆358Nov 3, 2020Updated 5 years ago
• scythe-io / purple-team-exercise-framework

  View on GitHub
  Purple Team Exercise Framework
  ☆783Apr 9, 2026Updated last month
• Kathayra / threathuntingmaturitymodel

  View on GitHub
  Build your own threat hunting maturity model
  ☆11Oct 29, 2017Updated 8 years ago
• idnahacks / NetCeasePlusPlus

  View on GitHub
  Takes the original idea of NetCease and adds functionality
  ☆24Feb 6, 2022Updated 4 years ago
• Securityinbits / cheatsheet

  View on GitHub
  These are some of the commands which I use frequently during Malware Analysis and DFIR.
  ☆24Jan 8, 2024Updated 2 years ago
• attactics / cslogwatch

  View on GitHub
  Cobalt Strike log state tracking, parsing, and storage
  ☆24Jul 18, 2019Updated 6 years ago
• OG-Sadpanda / SharpSword

  View on GitHub
  Read the contents of MS Word Documents using Cobalt Strike's Execute-Assembly
  ☆118Sep 30, 2024Updated last year
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• Octoberfest7 / JumpSession_BOF

  View on GitHub
  Beacon Object File allowing creation of Beacons in different sessions.
  ☆84May 23, 2022Updated 3 years ago
• watchtowrlabs / watchTowr-vs-SonicWall-PreAuth-RCE-Chain

  View on GitHub
  ☆19May 1, 2025Updated last year
• ch33r10 / BlueSpace2021

  View on GitHub
  Ekoparty's BlueSpace Keynote November 2021. Shoutout to @plugxor Muchas Gracias!!!
  ☆13Jun 5, 2023Updated 2 years ago
• SecurityRiskAdvisors / VECTR

  View on GitHub
  VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities a…
  ☆1,570Apr 24, 2026Updated 3 weeks ago
• OTRF / openhunt

  View on GitHub
  ☆35Jun 22, 2021Updated 4 years ago
• zimnyaa / stoplooking

  View on GitHub
  A simple BOF that disables some logging with NtSetInformationProcess
  ☆14Oct 13, 2023Updated 2 years ago
• Logisek / AzureADEnumeration

  View on GitHub
  Microsoft Entra ID (Azure AD) Unauthenticated Enumeration
  ☆70Feb 5, 2026Updated 3 months ago
• xpn / DemoLab

  View on GitHub
  A very simple lab to demo some Terraform, DSC, Inspec and Gitlab CI
  ☆94Dec 8, 2022Updated 3 years ago
• TheHive-Project / TheHiveHooks

  View on GitHub
  This is a python tool aiming to make using TheHive webhooks easier.
  ☆28Oct 23, 2020Updated 5 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• SecurityRiskAdvisors / sra-taxii2-server

  View on GitHub
  TAXII 2.0 Server implemented in Node JS with MongoDB backend
  ☆12Jan 3, 2023Updated 3 years ago
• VoldeSec / BOF-NPPSPY

  View on GitHub
  Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassumi…
  ☆19Apr 24, 2023Updated 3 years ago
• EspressoCake / BetterPipename

  View on GitHub
  Example of using Sleep to create better named pipes.
  ☆41Jul 25, 2023Updated 2 years ago
• JoasASantos / Red-Team-Operations-Framework

  View on GitHub
  Red Team Operations Framework
  ☆24Jul 14, 2024Updated last year
• Flangvik / SharpAppLocker

  View on GitHub
  C# port of the Get-AppLockerPolicy PS cmdlet
  ☆99Dec 8, 2022Updated 3 years ago
• DaRuudii / qradar-utils

  View on GitHub
  This repository bundles various utilities and scripts I built for use with IBM QRadar SIEM
  ☆16Jan 30, 2026Updated 3 months ago
• facebookincubator / ForgeArmory

  View on GitHub
  ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).
  ☆125Apr 14, 2026Updated last month