#
Starred repositories
A not so awesome list of malware gems for aspiring malware analysts
Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
A tool for parsing breached passwords
Covenant is a collaborative .NET C2 framework for red teamers.
A toolbox for extracting RSA private keys from public keys.
Compilation of Resources for TCM's Linux Privilege Escalation course
🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
A knowledge base of actionable Incident Response techniques
A swiss army knife for pentesting networks
ThePhish: an automated phishing email analysis tool
Набор DataProvider-ов с различной реализацией разбивки данных на страницы
Sightings Ecosystem gives cyber defenders visibility into what adversaries actually do in the wild. With your help, we are tracking MITRE ATT&CK® techniques observed to give defenders real data on …
TRAM is an open-source platform designed to advance research into automating the mapping of cyber threat intelligence reports to MITRE ATT&CK®.
Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translating those scans into adversaries for network traversal.
🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as an archive.
Rust Weaponization for Red Team Engagements.
🚨ATTENTION🚨 The VERIS mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as an archive.
An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.
A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.
Template-Driven AV/EDR Evasion Framework
A collection of Red Team focused tools, scripts, and notes
Scripts and a (future) library to improve users' interactions with the ATT&CK content