Alternatives and similar repositories for HIPS_LIPS

Users that are interested in HIPS_LIPS are comparing it to the libraries listed below

• vysecurity / CobaltSplunk
  Splunk Dashboard for CobaltStrike logs
  ☆89Updated 4 years ago
• redcanaryco / wwhf
  Exercises for C# Workshop at Wild West Hackin' Fest 2018 & 2019.
  ☆64Updated 5 years ago
• outflanknl / DoH_c2_Trigger
  Code for blogpost: https://outflank.nl/blog/2018/10/25/building-resilient-c2-infrastructues-using-dns-over-https/
  ☆52Updated 6 years ago
• malcomvetter / DnsCache
  ☆45Updated 6 years ago
• RhinoSecurityLabs / external_c2_framework
  Python api for usage with cobalt strike's External C2 specification
  ☆70Updated 7 years ago
• slyd0g / TimeStomper
  PoC that manipulates Windows file times using SetFileTime() API
  ☆62Updated 6 years ago
• b4rtik / HiddenPowerShellDll
  ☆94Updated 6 years ago
• rasta-mouse / CollectorService
  ☆54Updated 6 years ago
• rmdavy / WordAmsiBypass
  ☆38Updated 6 years ago
• 001SPARTaN / csfm
  Cobalt Strike Field Manual - A quick reference for Windows commands that can be accessed in a beacon console.
  ☆65Updated 7 years ago
• cobbr / InsecurePowerShell
  InsecurePowerShell is PowerShell with some security features removed.
  ☆106Updated 7 years ago
• threatexpress / persistence-aggressor-script
  initial commit
  ☆44Updated 9 months ago
• OTRF / bloodhound-notebook
  BloodHound Cypher Queries Ported to a Jupyter Notebook
  ☆53Updated 5 years ago
• freshness79 / unlock
  Microsoft Applocker evasion tool
  ☆39Updated 5 years ago
• secgroundzero / tetanus
  Helper script for mangling CS payloads
  ☆51Updated 6 years ago
• vysecurity / Invoke-ProcessScan
  Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.
  ☆46Updated 8 years ago
• kmkz / Sources
  Random source codes
  ☆25Updated 5 years ago
• airbus-cyber / CyberSecRessources
  ☆25Updated 4 years ago
• FSecureLABS / SharpGPO-RemoteAccessPolicies
  A C# tool for enumerating remote access policies through group policy.
  ☆73Updated 6 years ago
• vysecurity / FSharp-Shellcode
  F# Implementation to spawn shellcode
  ☆48Updated 7 years ago
• rvrsh3ll / Word-Doc-Video-Embed-EXE-POC
  ☆94Updated 6 years ago
• icebearfriend / Quickrundown
  Smart overlay for Cobalt Strike PS function
  ☆31Updated 6 years ago
• scottlundgren / w32time
  ☆54Updated 6 years ago
• djhohnstein / wlbsctrl_poc
  C++ POC code for the wlbsctrl.dll hijack on IKEEXT
  ☆54Updated 6 years ago
• tasox / LogRM
  LogRM is a post exploitation powershell script which it uses windows event logs to gather information about internal network
  ☆74Updated 6 years ago
• homjxi0e / ReaCOM
  ReaCOM has got a lot of tools to use and is related to component object model
  ☆74Updated 5 years ago
• 3gstudent / bitsadminexec
  Use bitsadmin to maintain persistence and bypass Autoruns
  ☆66Updated 8 years ago
• homjxi0e / LOLBAS222
  APT || Execution || Launch || APTs || ( Authors harr0ey, bohops )
  ☆109Updated 6 years ago
• Truneski / external_c2_framework
  Python api for usage with cobalt strike's External C2 specification
  ☆62Updated 6 years ago
• OmerYa / Babel-Shellfish
  Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.
  ☆43Updated 6 years ago