therealunicornsecurity / tricardLinks
Tricard - Malware Sandbox Fingerprinting
☆20Updated last year
Alternatives and similar repositories for tricard
Users that are interested in tricard are comparing it to the libraries listed below
Sorting:
- Proof-of-Concept to evade auditd by tampering via ptrace☆17Updated last year
- reboot of https://github.com/Genetic-Malware/Ebowla in order to simplify / modernize the codebase and provide ongoing support☆22Updated 3 years ago
- ☆18Updated last year
- This repository contains several AMSI bypasses. These bypasses are based on some very nice research that has been put out by some awesome…☆24Updated 2 years ago
- NanoDumpInject from https://s3cur3th1ssh1t.github.io/Reflective-Dump-Tools/ , minor edits with a few syscalls☆11Updated 2 years ago
- Extension functionality for the NightHawk operator client☆27Updated last year
- Python C2 with JScript Implant☆14Updated last year
- Proof-of-Concept to evade auditd by writing /proc/PID/mem☆21Updated last year
- OpenHashAPI provides a secure method of communicating hashes and enables lightweight workflows for security practitioners and enthusiasts…☆14Updated 7 months ago
- Dump Lsass Memory Using a Reflective Dll☆14Updated 3 years ago
- The Totally Legit Authentication Dialog☆12Updated last year
- Helper script for BloodHound to automatically add relationships between multiple accounts owned by the same individual☆14Updated 2 years ago
- Golang Shlyuz Implant Implementation☆13Updated last week
- Exactly what it sounds like, which is something rad☆22Updated 2 years ago
- PoC MSI payload based on ASEC/AhnLab's blog post☆23Updated 2 years ago
- ☆11Updated 4 years ago
- OMIGOD! OM I GOOD? A free scanner to detect VMs vulnerable to one of the "OMIGOD" vulnerabilities discovered by Wiz's threat research tea…☆18Updated 3 years ago
- ☆12Updated 2 years ago
- CLI Search for Security Operators of MITRE ATT&CK URLs☆16Updated 2 years ago
- Remote code execution in Power Platform connectors via JSON deserialization☆22Updated 2 years ago
- Apply a filter to the events being reported by windows event logging☆15Updated 4 years ago
- Some stuff for PHD2021☆14Updated last week
- Tool for obtaining information about PPL processes☆17Updated last year
- The repository accompanying the Buer Emulation workshop☆24Updated 3 years ago
- Watches the Downloads folder for any new files and inserts it into Nemesis for analysis.☆14Updated last year
- A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.☆21Updated 10 months ago
- AMSI detection PoC☆31Updated 5 years ago
- leaking net-ntlm with webdav☆25Updated 4 years ago
- An adaptation of timwhitez's proxycall that uses kernelbase.dll!Beep.☆12Updated last year
- powershell script i wrote that can suspend an arbitrary process (with limits)☆20Updated 2 years ago