tsale / TA_toolingLinks
☆10Updated 2 years ago
Alternatives and similar repositories for TA_tooling
Users that are interested in TA_tooling are comparing it to the libraries listed below
Sorting:
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆64Updated 3 years ago
- ☆42Updated 3 years ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 2 years ago
- Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…☆17Updated 4 years ago
- A module for CME that spiders across a domain.☆35Updated 3 years ago
- ☆45Updated last year
- A small POC of using Azure Functions to relay communications. Feel free to add additional functionality beyond this POC!☆76Updated 2 years ago
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆69Updated 3 years ago
- BloodCheck enables Red and Blue Teams to manage multiple Neo4j databases and run Cypher queries against a BloodHound dataset.☆17Updated 4 years ago
- ☆34Updated 2 years ago
- ☆26Updated 4 years ago
- Tradecraft Development Fundamentals☆40Updated 3 years ago
- pypykatz plugin for volatility3 framework☆40Updated last month
- ☆27Updated 4 years ago
- ☆23Updated 3 years ago
- Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).☆57Updated 2 years ago
- Federated Office365 user enumeration based on correlated response trend analysis☆51Updated 3 years ago
- ☆25Updated 3 years ago
- ☆84Updated 2 years ago
- AdHoc solutions☆48Updated last year
- Extract payload URLs from Follina (CVE-2022-30190) docx and rtf files☆31Updated 3 years ago
- ☆37Updated 3 years ago
- A technique for Active Directory domain persistence☆39Updated 2 years ago
- Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later☆91Updated 2 years ago
- Python tool to find vulnerable AD object and generating csv report☆26Updated 3 years ago
- ☆18Updated last year
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged☆86Updated 3 years ago
- Service Enumeration C# .NET Assembly☆58Updated 3 years ago
- ☆38Updated last year
- Dump LSASS process in Task Manager without triggering Defender.☆18Updated 2 years ago