trustedsec / RisingSunLinks
RisingSun: Decoding SUNBURST C2 to identify infected hosts without network telemetry.
☆10Updated 4 years ago
Alternatives and similar repositories for RisingSun
Users that are interested in RisingSun are comparing it to the libraries listed below
Sorting:
- Active Directory information dumper via LDAP☆12Updated 5 years ago
- Gunslinger is used to hunt for Magecart sites using URLScan's API☆31Updated 3 years ago
- A tool for checking a hash:pass pot file for hashes from a user:hash file☆12Updated 8 years ago
- This repo is dedicated to all my tricks, tweaks and modules for testing and hunting threats. This repo contains multiple directories whic…☆56Updated 7 years ago
- PowerShell Memory Pulling script☆19Updated 10 years ago
- Miscellaneous for various things☆21Updated 8 months ago
- Repo for hosting various scripts for creating users for password spraying and other password attacks.☆11Updated 5 years ago
- Clean public password dump files and store in ELK☆38Updated 7 years ago
- PowerShell version of Fail2Ban☆12Updated 5 years ago
- Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.☆15Updated 8 years ago
- ☆33Updated 6 months ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns by leveraging Windows Events and Sys…☆12Updated 8 years ago
- Hashes of infamous malware☆26Updated 2 years ago
- Simple tool to extract the most common substrings from an input text. Built for password cracking.☆66Updated 5 years ago
- wordlists for password cracking☆28Updated 2 years ago
- Collaborative web dashboard for RedTeam pentesters☆21Updated 5 years ago
- A PowerShell Module Dedicated to Reverse Engineering☆15Updated 5 years ago
- HoneyDB Python Module☆13Updated last year
- This tool aims at automating the identification of potential service running behind ports identified manually either through manual scan …☆52Updated 4 years ago
- Collection of scripts that I have used on Red Team engagements☆16Updated 7 years ago
- Post-exploitation NTLM password hash extractor☆20Updated 4 years ago
- Egressbuster is a method to check egress filtering and identify if ports are allowed. If they are, you can automatically spawn a shell.☆12Updated 7 years ago
- Wireless Pentesting Device☆22Updated 4 years ago
- A script to assist in processing forensic RAM captures for malware triage☆27Updated 4 years ago
- Notebooks created to attack and secure Active Directory environments☆27Updated 5 years ago
- Exchange your privileges for Domain Admin privs by abusing Exchange☆16Updated 5 years ago
- Scripts to threat optics stack quickly / abbreviated and automated. Run after APT-Lab-Terraform☆13Updated 4 years ago
- CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.☆12Updated 6 years ago
- Generates anti-sandbox analysis HTA files without payloads☆16Updated 8 years ago
- A parser to extract information from .nessus file format☆23Updated 4 years ago