CSIRT-Collect is a PowerShell script to collect memory and (triage) disk forensics for incident response investigations. The script leverages a network share, from which it...

LummaC2 Stealer : Unpacking The Threats Of A Marketed ‘Premium’ Malware

SSH-Stealer : The Stealthy Threat Of Advanced Credential Theft

T1036.005 – Masquerading : Match Legitimate Name Or Location

Malware

Minegrief : Unpacking A Crafty Minecraft Malware

YaraHunter : A Comprehensive Malware Scanning Tool

Relocatable : A Tool For Position Independent Code

BypassAV : Techniques To Evade Antivirus And EDR Systems

SSH-Stealer : The Stealthy Threat Of Advanced Credential Theft

Capa v7.3.0 – Enhanced Malware Analysis With VMRay Integration, Ghidra Support,...

RunAs-Stealer : A Credential Stealing Tool

Full Spectrum Event Tracing For Windows Detection In The kernel Against...

Anti-Qakbot – Disabling The Malicious Threat

HellBunny : Advanced Shellcode Loader For EDR Evasio

APPLICATIONS

Local KDC For Windows – Implementing Kerberos Authentication Without Domain Membership

Mole : A Framework For Identifying & Exploiting Out-Of-Band Application Vulnerabilities

Certipy : Python Implementation For Active Directory Certificate Abuse

Shortemall – The Definitive Guide To Advanced URL Scanning

HOT NEWS

CSIRT-Collect : PowerShell Script To Collect Memory And (Triage) Disk Forensics