Alternatives and similar repositories for procdot_sandbox:

Users that are interested in procdot_sandbox are comparing it to the libraries listed below

• DissectMalware / OfficeForensicTools
  A set of tools for collecting forensic information
  ☆26Updated 5 years ago
• 3xpl01tc0d3r / Building-ActiveDirectory-Lab
  Building ActiveDirectory Lab for practicing various attack vectors used during Red Team engagement.
  ☆36Updated 5 years ago
• IceMoonHSV / Sim
  C# User Simulation
  ☆32Updated 2 years ago
• stairwell-inc / cobalt-strike-stager-parser
  ☆34Updated 2 years ago
• keydet89 / LNK
  Repository for LNK stuff
  ☆29Updated 2 years ago
• SIFalcon / Detection
  ☆22Updated last year
• S3cur3Th1sSh1t / SharpByeBear
  AppXSVC Service race condition - privilege escalation
  ☆27Updated 5 years ago
• mandiant / apooxml
  Generate YARA rules for OOXML documents.
  ☆38Updated last year
• fashionproof / RunHijackHunter
  ☆16Updated 3 years ago
• jstnk9 / ETW-Almulahaza
  ETW-Almulahaza is a consumer python-based tool that help you monitor ETW events of the operating system
  ☆13Updated 2 years ago
• StefanKelm / yara-rules
  Links to malware-related YARA rules
  ☆15Updated 2 years ago
• Retrospected / kerbmon
  Continuous kerberoast monitor
  ☆44Updated last year
• LaresLLC / AzureTokenExtractor
  Extracts Azure authentication tokens from PowerShell process minidumps.
  ☆23Updated last year
• threatexpress / threat-mitigation
  Threat Mitigation Strategies
  ☆25Updated last year
• ConsciousHacker / GreatSCT
  The project is called GreatSCT (Great Scott). GreatSCT is an open source project to generate application white list bypasses. This tool i…
  ☆30Updated 6 years ago
• mandiant / goauditparser
  ☆44Updated last year
• OmerYa / Babel-Shellfish
  Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.
  ☆43Updated 6 years ago
• yasser-alghamdi / winterfell-hunt
  Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…
  ☆15Updated 4 years ago
• jfmaes / Emulation-Workshop
  The repository accompanying the Buer Emulation workshop
  ☆24Updated 3 years ago
• WithSecureLabs / AMSIDetection
  AMSI detection PoC
  ☆31Updated 5 years ago
• Stealthbits / RIDHijackingProofofConceptKJ
  RID Hijacking Proof of Concept script by Kevin Joyce
  ☆15Updated 6 years ago
• snemes / malware-analysis
  ☆23Updated 4 years ago
• infosecn1nja / e2modrewrite
  Convert Empire profiles to Apache mod_rewrite scripts
  ☆27Updated 5 years ago
• blackarrowsec / Malleable-C2-Profiles
  Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…
  ☆17Updated 3 years ago
• woanware / etw-event-dumper
  ☆33Updated 3 years ago
• fatihsirin / Tweettioc-Splunk-App
  Tweettioc Splunk App
  ☆20Updated 4 years ago
• PwnDexter / FindFrontableDomains
  Forked and updated with some additional features over the original
  ☆16Updated 4 years ago
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆30Updated 2 years ago
• nettitude / PoshC2_IOCs
  A list of IOCs applicable to PoshC2
  ☆24Updated 4 years ago
• OTRF / bloodhound-notebooks
  Notebooks created to attack and secure Active Directory environments
  ☆27Updated 5 years ago