658 Open source projects that are alternatives of or similar to Malwarepersistencescripts

WADComs is an interactive cheat sheet, containing a curated list of Unix/Windows offensive tools and their respective commands.

Collection of malware persistence and hunting information. Be a persistent persistence hunter!

A PowerShell module to deploy active directory decoy objects.

Extensible Red Team Framework

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Monitoring GitHub for sensitive data shared publicly

Blue Team detection lab created with Terraform and Ansible in Azure.

🍓📡🍍Monitor illegal wireless network activities. (Fake Access Points), (WiFi Threats: KARMA Attacks, WiFi Pineapple, Similar SSID, OPN Network Density etc.)

Search for Unix binaries that can be exploited to bypass system security restrictions.

linux post-exploitation framework made by linux user

Python AV Evasion Tools

A collection of electronic hacker magazines carefully curated over the years from multiple sources

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

Automated, extensible toolset that runs cypher queries against Bloodhound's Neo4j backend and saves output to spreadsheets.

Test Blue Team detections without running any attack.

Utility for hunting UAC bypasses or COM/DLL hijacks that alerts on the exported function that was consumed.

This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

一款适用于红蓝对抗中的仿真钓鱼系统

This repository contains full code examples from the book Gray Hat C#

A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-))

E-mails, subdomains and names Harvester - OSINT

Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace

个人维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

The goal of this repository is to document the most common techniques to bypass AppLocker.

Collecting IOCs posted on Twitter

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

LD_PRELOAD rootkit

Scan your code for security misconfiguration, search for passwords and secrets. 🔍

mXtract - Memory Extractor & Analyzer

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

This tool allows one to recover old RDP (mstsc) session information in the form of broken PNG files. These PNG files allows Red Team member to extract juicy information such as LAPS passwords or any sensitive information on the screen. Blue Team member can reconstruct PNG files to see what an attacker did on a compromised host. It is extremely useful for a forensics team to extract timestamps after an attack on a host to collect evidences and perform further analysis.

Monitoring your Slack workspaces for sensitive information

C++/Win32/Boost Windows RAT (Remote Administration Tool) with a multiplatform Java/Spring RESTful C2 server and Go, C++/Qt5 frontends

Monitoring GitLab for sensitive data shared publicly

An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)

OSINT Bookmarks for Firefox / Chrome / Edge / Safari

Purple Team Exercise Framework

fireELF - Fileless Linux Malware Framework

Snoop — инструмент разведки на основе открытых данных (OSINT world)

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

VirusTotal Wanna Be - Now with 100% more Hipster

⛑ A ~300b unistore helper to persist your data using equally tiny storage adapters

The Unnamed Persistence Library

APT || Execution || Launch || APTs || ( Authors harr0ey, bohops )

Pseudo-malicious usermode memory artifact generator kit designed to easily mimic the footprints left by real malware on an infected Windows OS.

A ctypes powered python keylogger.

Detect potentially malicious PHP files

Telegram Desktop Session Stealer

ThreatHunt is a PowerShell repository that allows you to train your threat hunting skills.

Deobfuscation and analysis of PHP malware captured by a WordPress honey pot

Malware Data Science Reading Diary / Notes

The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

Automation for internal Windows Penetrationtest / AD-Security

A set of recipes useful in pentesting and red teaming scenarios

Ruby API client framework