Proof-of-concept implementation of DropIt

Attify OS - Distro for pentesting IoT devices

Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

Small and highly portable detection tests based on MITRE's ATT&CK.

This script will generate payloads for basic intrusion detection avoidance. It utilizes publicly demonstrated techniques from several different sources. Written by Larry Spohn (@Spoonman1091) Paylo…

OBS Studio - Free and open source software for live streaming and screen recording

SANS Hunting on the Cheap

Repository of yara rules

Use Markov Chains to obfuscate data as other data

The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.

AntiVirus Evasion Tool

Emscripten: An LLVM-to-WebAssembly Compiler

Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.

Script to send hashes from SIEM to VirusTotal; then to syslog for automation

This function runs a number of checks on a system to help provide situational awareness to a penetration tester during the reconnaissance phase. It gathers information about the local system, users…

Empire is a PowerShell and Python post-exploitation agent.

Multi-language code obfuscation

Indicators from Unit 42 Public Reports

Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique present…

PowerSploit - A PowerShell Post-Exploitation Framework

Incident Response Forensic Framework