trustedsec / RisingSunLinks
RisingSun: Decoding SUNBURST C2 to identify infected hosts without network telemetry.
☆10Updated 4 years ago
Alternatives and similar repositories for RisingSun
Users that are interested in RisingSun are comparing it to the libraries listed below
Sorting:
- PowerShell Memory Pulling script☆19Updated 10 years ago
- Gunslinger is used to hunt for Magecart sites using URLScan's API☆31Updated 3 years ago
- Active Directory information dumper via LDAP☆13Updated 5 years ago
- This repo is dedicated to all my tricks, tweaks and modules for testing and hunting threats. This repo contains multiple directories whic…☆56Updated 7 years ago
- Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.☆15Updated 8 years ago
- Miscellaneous for various things☆21Updated 9 months ago
- PowerShell version of Fail2Ban☆12Updated 5 years ago
- A tool for checking a hash:pass pot file for hashes from a user:hash file☆12Updated 8 years ago
- Repo for hosting various scripts for creating users for password spraying and other password attacks.☆11Updated 5 years ago
- ☆33Updated 7 months ago
- A PowerShell Module Dedicated to Reverse Engineering☆15Updated 5 years ago
- Notebooks created to attack and secure Active Directory environments☆27Updated 5 years ago
- Creates an ATT&CK Navigator map of an Adversary Emulation Plan☆17Updated 3 years ago
- Wireless Pentesting Device☆23Updated 5 years ago
- Generates anti-sandbox analysis HTA files without payloads☆16Updated 8 years ago
- LetMeOutOfYour.net Resources☆20Updated 5 years ago
- Hashes of infamous malware☆26Updated 2 years ago
- A simple utility to check the status of and/or disable SMBv1 on Windows system via Cb Response's Live Response functionality.☆15Updated 6 years ago
- Simple tool to extract the most common substrings from an input text. Built for password cracking.☆66Updated 5 years ago
- ☆22Updated 4 years ago
- OSSEM Modular☆27Updated 5 years ago
- This tool aims at automating the identification of potential service running behind ports identified manually either through manual scan …☆53Updated 4 years ago
- A few quick recipes for those that do not have much time during the day☆22Updated 9 months ago
- Collaborative web dashboard for RedTeam pentesters☆21Updated 5 years ago
- buffer overflow examples☆22Updated 7 years ago
- A script to assist in processing forensic RAM captures for malware triage☆27Updated 4 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 6 years ago
- An extendable tool to extract and aggregate IoCs from threat feeds☆33Updated last year
- Egressbuster is a method to check egress filtering and identify if ports are allowed. If they are, you can automatically spawn a shell.☆12Updated 7 years ago
- Clean public password dump files and store in ELK☆38Updated 7 years ago