threatexpress / procdot_sandboxLinks
ProcDot Malware Sandbox
☆24Updated 6 months ago
Alternatives and similar repositories for procdot_sandbox
Users that are interested in procdot_sandbox are comparing it to the libraries listed below
Sorting:
- Building ActiveDirectory Lab for practicing various attack vectors used during Red Team engagement.☆36Updated 5 years ago
- ☆34Updated 2 years ago
- A set of tools for collecting forensic information☆26Updated 5 years ago
- Threat Mitigation Strategies☆25Updated last year
- C# User Simulation☆32Updated 2 years ago
- ☆16Updated 4 years ago
- Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.☆43Updated 6 years ago
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- Extracts Azure authentication tokens from PowerShell process minidumps.☆23Updated 2 years ago
- Repository for LNK stuff☆30Updated 2 years ago
- C# Implementation of Jared Atkinson's Get-InjectedThread.ps1☆53Updated 3 years ago
- BloodHound Data Scanner☆45Updated 4 years ago
- Continuous kerberoast monitor☆45Updated last year
- Presentation materials for talks I've given.☆20Updated 5 years ago
- various slides and presentations I've worked on☆19Updated 2 months ago
- ETW-Almulahaza is a consumer python-based tool that help you monitor ETW events of the operating system☆13Updated 2 years ago
- Malware campaigns and APTs research by BlackArrow☆18Updated 5 years ago
- The repository accompanying the Buer Emulation workshop☆24Updated 3 years ago
- AppXSVC Service race condition - privilege escalation☆28Updated 5 years ago
- ☆22Updated last year
- ☆11Updated 4 years ago
- Reproducible and extensible BloodHound playbooks☆43Updated 5 years ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 2 years ago
- Links to malware-related YARA rules☆15Updated 2 years ago
- Tools for playing w/ CobaltStrike config - extractin, detection, processing, etc...☆30Updated 2 years ago
- Network Finger Printer☆16Updated 7 years ago
- Specialized tool to dump Position Independent Code.☆22Updated 4 years ago
- Tool to manage user privileges☆28Updated 5 years ago
- ☆23Updated 4 years ago
- A powershell parser for https://github.com/ufrisk/MemProcFS☆44Updated 4 years ago