Fhelps-Hunter

Fhelps-Hunter's Stars

• password-reset/TrelloC2

  Simple C2 over the Trello API

  Language:Python3710

• tyranid/DotNetToJScript

  A tool to create a JScript file which loads a .NET v2 assembly from memory.

  Language:C#1.2k299

• SigmaHQ/sigma

  Main Sigma Rule Repository

  Language:Python8.1k2.2k

• GossiTheDog/ThreatHunting

  Tools for hunting for threats.

  Language:YARA56457

• frederikme/sandboxed

  Virtual machine detection. This is done by looking at registry keys, processes, files, internet access and specs such as disk storage, RAM and amount of cpu cores. Easy to use Python 3 library.

  Language:Python174

• LOLBAS-Project/LOLBAS

  Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

  Language:XSLT6.9k972

• byt3bl33d3r/SILENTTRINITY

  An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR

  Language:Boo2.2k402

• ThreatHuntingProject/ThreatHunting

  An informational repo about hunting for adversaries in your IT environment.

  1.7k365

• mitre-attack/car

  Cyber Analytics Repository

  Language:Python894310

• n00py/NorkNork

  Powershell Empire Persistence finder

  Language:Python11633

• EmpireProject/PSInject

  Inject PowerShell into any process

  Language:PowerShell21982

• psmitty7373/eif

  Evil Reflective DLL Injection Finder

  Language:C++449

• WiredPulse/EIF_Parser

  Evil Inject Finder Remote Capability and Parser

  Language:PowerShell93

• danielbohannon/Invoke-Obfuscation

  PowerShell Obfuscator

  Language:PowerShell3.7k762

• PowerShellMafia/PowerSploit

  PowerSploit - A PowerShell Post-Exploitation Framework

  Language:PowerShell11.8k4.6k

• FuzzySecurity/PowerShell-Suite

  My musings with PowerShell

  Language:PowerShell2.6k762

• IonizeCbr/AmsiPatchDetection

  Language:C#195

• marcosd4h/memhunter

  Live hunting of code injection techniques

  Language:C++36889

• volatilityfoundation/volatility

  An advanced memory forensics framework

  Language:Python7.2k1.3k

• mattifestation/PowerShellArsenal

  A PowerShell Module Dedicated to Reverse Engineering

  Language:PowerShell853207

• Neo23x0/ImpHash-Generator

  PE Import Hash Generator

  Language:Python7227

• NexusFuzzy/CobaltSpam

  Tool based on CobaltStrikeParser from SentinelOne which can be used to spam a CobaltStrike server with fake beacons

  Language:Python36444

• phantinuss/asgard-playbooks

  Language:Python92

• RiccardoAncarani/LiquidSnake

  LiquidSnake is a tool that allows operators to perform fileless lateral movement using WMI Event Subscriptions and GadgetToJScript

  Language:C#32746

• back2root/log4shell-rex

  PCRE RegEx matching Log4Shell CVE-2021-44228 IOC in your logs

  Language:Java29332

• pH-T/go-revshell

  Go reverse shell for Win/Linux/OSX

  Language:Go172

• NextronSystems/ransomware-simulator

  Ransomware simulator written in Golang

  Language:Go40149

• pan-unit42/wireshark-workshop

  pcaps of traffic for traffic analysis workshop

  7221

• Neo23x0/yarAnalyzer

  Yara Rule Analyzer and Statistics

  Language:Python35674

• Neo23x0/yarGen

  yarGen is a generator for YARA rules

  Language:Python1.5k280