tsale / TA_toolingLinks
☆10Updated 2 years ago
Alternatives and similar repositories for TA_tooling
Users that are interested in TA_tooling are comparing it to the libraries listed below
Sorting:
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆64Updated 3 years ago
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆70Updated 3 years ago
- ☆43Updated 3 years ago
- pypykatz plugin for volatility3 framework☆43Updated 4 months ago
- AdHoc solutions☆48Updated 2 years ago
- An Ansible role for installing Cobalt Strike.☆81Updated last week
- Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.☆68Updated 3 years ago
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…☆17Updated 4 years ago
- A module for CME that spiders across a domain.☆35Updated 3 years ago
- Tradecraft Development Fundamentals☆40Updated 4 years ago
- Placeholder for my detection repo and misc detection engineering content☆42Updated last year
- BloodCheck enables Red and Blue Teams to manage multiple Neo4j databases and run Cypher queries against a BloodHound dataset.☆17Updated 4 years ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆74Updated 3 years ago
- ☆36Updated 2 years ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 3 years ago
- ☆22Updated 2 years ago
- ☆53Updated 4 years ago
- Repository of Volatility3 plugins☆22Updated 2 years ago
- ☆33Updated 3 years ago
- ☆26Updated 4 years ago
- Dump LSASS process in Task Manager without triggering Defender.☆18Updated 2 years ago
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged☆87Updated 3 years ago
- ☆18Updated last year
- Service Enumeration C# .NET Assembly☆59Updated 4 years ago
- ShellSweeping the evil.☆53Updated last year
- ☆48Updated 5 years ago
- Tools for playing w/ CobaltStrike config - extractin, detection, processing, etc...☆30Updated 2 years ago
- ☆85Updated 2 years ago
- Modular malware analysis artifact collection and correlation framework☆53Updated last year