Alternatives and similar repositories for TA_tooling

Users that are interested in TA_tooling are comparing it to the libraries listed below

• Immersive-Labs-Sec / BruteRatel-DetectionTools
  A collection of Tools and Rules for decoding Brute Ratel C4 badgers
  ☆62Updated 2 years ago
• blackarrowsec / Malleable-C2-Profiles
  Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…
  ☆17Updated 4 years ago
• mitchmoser / AtYourService
  Service Enumeration C# .NET Assembly
  ☆58Updated 3 years ago
• Mr-B0b / BloodCheck
  BloodCheck enables Red and Blue Teams to manage multiple Neo4j databases and run Cypher queries against a BloodHound dataset.
  ☆17Updated 3 years ago
• pgormanDS / hash_spider
  A module for CME that spiders across a domain.
  ☆35Updated 2 years ago
• mdsecactivebreach / RegistryStrikesBack
  ☆53Updated 4 years ago
• skelsec / pypykatz-volatility3
  pypykatz plugin for volatility3 framework
  ☆40Updated this week
• fozavci / TradecraftDevelopment-Fundamentals
  Tradecraft Development Fundamentals
  ☆40Updated 3 years ago
• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 2 years ago
• binaryAccess / highway_to_hell
  Pwnage
  ☆16Updated 3 months ago
• dtrizna / DotNetInject
  Code samples of .NET shellcode injections, weaponized for use via WebDav and mshta.exe.
  ☆37Updated 5 years ago
• cedowens / Mod_Rewrite_Automation
  Scripts to automate standing up apache2 with mod_rewrite in front of C2 servers.
  ☆47Updated 4 years ago
• RedSiege / FunctionalC2
  A small POC of using Azure Functions to relay communications. Feel free to add additional functionality beyond this POC!
  ☆75Updated 2 years ago
• optiv / BadOutlook
  (kinda) Malicious Outlook Reader
  ☆19Updated 4 years ago
• Tylous / Slides
  ☆38Updated last year
• stairwell-inc / cobalt-strike-stager-parser
  ☆34Updated 2 years ago
• RiccardoAncarani / talks
  ☆41Updated 2 years ago
• yoda66 / MalwareDevTalk
  ☆48Updated 5 years ago
• Synzack / Excel-4.0-Shellcode-Generator
  ☆13Updated 5 years ago
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆31Updated 2 years ago
• netwrix / server-untrust-account
  A technique for Active Directory domain persistence
  ☆39Updated 2 years ago
• gavz / CSASC
  Cobalt Strike Aggressor Script Collection
  ☆19Updated 7 years ago
• jsecurity101 / LDAPMon
  ☆45Updated last year
• spamv / SharpShooter
  Payload Generation Framework
  ☆9Updated 5 years ago
• nullsection / SharpETW-Patch
  ☆23Updated last year
• slyd0g / SharpCrashEventLog
  C# port of LogServiceCrash
  ☆46Updated 4 years ago
• netbiosX / GhostLoader
  GhostLoader - AppDomainManager - Injection - 攻壳机动队
  ☆53Updated 5 years ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆43Updated last year
• 0xthirteen / CleanRunMRU
  Get or remove RunMRU values
  ☆55Updated 5 years ago
• Pascal-0x90 / sideloadr
  Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).
  ☆56Updated 2 years ago