trustedsec / RisingSun
RisingSun: Decoding SUNBURST C2 to identify infected hosts without network telemetry.
☆10Updated 4 years ago
Alternatives and similar repositories for RisingSun:
Users that are interested in RisingSun are comparing it to the libraries listed below
- Active Directory information dumper via LDAP☆12Updated 5 years ago
- Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.☆14Updated 7 years ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns by leveraging Windows Events and Sys…☆12Updated 8 years ago
- Wireless Pentesting Device☆20Updated 4 years ago
- Exchange your privileges for Domain Admin privs by abusing Exchange☆16Updated 5 years ago
- Script to parse multiple Nmap .gnmap exports into various plain-text formats for easy analysis.☆24Updated 10 years ago
- Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…☆29Updated 8 years ago
- A single repository for any security tools, scripts, documentation, etc. that I add☆12Updated 7 years ago
- A tool for checking a hash:pass pot file for hashes from a user:hash file☆12Updated 8 years ago
- Creates an ATT&CK Navigator map of an Adversary Emulation Plan☆17Updated 3 years ago
- ☆33Updated 2 months ago
- A PowerShell Module Dedicated to Reverse Engineering☆14Updated 5 years ago
- A powershell script that prints a lot of IP and connection info to the screen☆31Updated 8 years ago
- Repo for hosting various scripts for creating users for password spraying and other password attacks.☆11Updated 4 years ago
- PowerShell Memory Pulling script☆19Updated 10 years ago
- Collaborative web dashboard for RedTeam pentesters☆21Updated 5 years ago
- A pyobfuscate fork made specifically to randomize and obfuscate python based payloads☆13Updated 10 years ago
- A parser to extract information from .nessus file format☆23Updated 4 years ago
- LyncSniper: A tool for penetration testing Skype for Business and Lync deployments☆9Updated 8 years ago
- Automated install process for Phishing Frenzy☆24Updated 10 years ago
- A utility for password spraying using kerberos from an untrusted/non-domain joined Kali linux host. Useful for user and KDC/DC enumeratio…☆18Updated last year
- Generate a histogram of TCP and UDP payload bytes from a pcap file☆24Updated 2 years ago
- Generates anti-sandbox analysis HTA files without payloads☆15Updated 8 years ago
- Various Python scripts that have come in handy but aren't important enough to get their own repository☆22Updated 4 years ago
- Veil 3.1.X (Check version info in Veil at runtime)☆14Updated 5 years ago
- ☆14Updated 6 years ago
- C&C to deliver files and shuttle command execution instructions between an external actor and an internal agent with the help of Firefox …☆38Updated 2 years ago
- PowerShell version of Fail2Ban☆12Updated 5 years ago
- Gunslinger is used to hunt for Magecart sites using URLScan's API☆31Updated 3 years ago
- Egressbuster is a method to check egress filtering and identify if ports are allowed. If they are, you can automatically spawn a shell.☆11Updated 7 years ago