Odin is a central IoC scanner based on Loki.
This application Loki latest version and download it on all machines using a powershell script and run it then this app receives the respose from all machines and parse the feed in CSV form.
Odin download and extract the latest version on Loki and start HTTP server to deliver the executable (Loki) to all machines.
This step has ti be done manually using powershell script on a DC machine or suing domain admin account which the script deliver loki to all machines and start updating. The script is in Configurations tab and you can modiy the scipt as needed.
Start the listener then from the powershell script start Loki to search for IoCs and results will be sent from Loki to Odin
Collected logs will be parsed and can be exported as CSV file to be handled with something else like ELK.
shadow-rs is a Windows kernel rootkit written in Rust, demonstrating advanced techniques for kernel manipulation…
Extract and execute a PE embedded within a PNG file using an LNK file. The…
Embark on the journey of becoming a certified Red Team professional with our definitive guide.…
This repository contains proof of concept exploits for CVE-2024-5836 and CVE-2024-6778, which are vulnerabilities within…
This took me like 4 days (+2 days for an update), but I got it…
MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection. Its foundation is…