• Stars
    star
    14
  • Rank 1,438,076 (Top 29 %)
  • Language
    Python
  • License
    MIT License
  • Created over 4 years ago
  • Updated about 2 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Cisco AMP threat hunting scripts

More Repositories

1

EDR-Testing-Script

Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads
Batchfile
285
star
2

BlueTeam.Lab

Blue Team detection lab created with Terraform and Ansible in Azure.
Jinja
135
star
3

RT-CyberShield

Protecting Red Team infrastructure with cyber shield blocking AWS/AZURE/IBM/Digital Ocean/TOR/AV IP/ETC. ranges
Shell
44
star
4

Cloud-Investigate

A preconfigured Windows-based system designed for rapid forensic investigations in both Azure and AWS.
HCL
36
star
5

shadowbroker-smb-scanner

shadowbroker SMB exploit scanner. Scans for ETERNALSYNERGY ETERNALBLUE ETERNALROMANCE ETHERNALCHAMPION
Python
36
star
6

LeakGenerator

Generate your own personal data leak
Python
32
star
7

unix_collector

unix_collector is a Live Response collection script for Incident Response on UNIX-like systems using native binaries. Supports AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.
Shell
29
star
8

GeoIPPlotter

GeoIP plotting script written in Python to help security teams draw visualized reports from IP addresses
Python
20
star
9

OS.LAB

Operating System testbed created with Terraform to test payloads, programs and compatibility on different OS versions. Supports AWS and Azure.
HCL
18
star
10

defcon-23-slides-only

10
star
11

investigatehunt

Cisco Umbrella Investigate threat hunting scripts
Python
8
star
12

wordpress-password-bruteforcer

simple module which will attempt to bruteforce wordpress passwords for either specific username or specific list of users and passwords.
Python
8
star
13

powershell-reverse-shell

Simple Powershell Reverse Shell with handling server in python
Python
8
star
14

WINFINGER

A collection of Windows hashes generated against windows installation ISOs using sigcheck from Sysinternals
8
star
15

Bad-Firewall

Bad IP blocking firewall with ipset, iptables and a dash of bash.
Shell
7
star
16

car-hacking-materials

various references and docs related to car hacking
7
star
17

windows-driver-privesc

Check windows drivers for weak permission which could lead to privilage escalation.
5
star
18

LokiToWinEventLog

A repository containing scripts which allow Loki to log to Windows Event Log.
PowerShell
5
star
19

DNS-Testing-Script

Test the accuracy of DNS monitoring and blocking solution.
PowerShell
5
star
20

RT-OfficeBeaconBox

Simple Office-based beacon that calls back to your server for phishing exercises.
Shell
4
star
21

Yara-Mixer

PowerShell scripts concatenating different Yara rules into one master rule file.
PowerShell
3
star
22

Pe-SieveToWinEventLog

A repository containing scripts which allow pe-sieve to log to Windows Event Log.
PowerShell
3
star
23

local-mysql-bruteforcer

local mysql password bruteforcer
Python
3
star
24

fake-http-auth-generator

Python
3
star
25

amp-policy-kit

Cisco Secure Endpoint policy assessment kit
Python
3
star
26

meraki-hunting

Threat hunting scripts for Cisco Meraki installations
Python
2
star
27

SHARPPENCIL

A PowerShell and C# implementation of LDAP attribute extraction for domain users
PowerShell
2
star
28

Invoke-DomainHasher

A threat hunting tool designed to help in identifying unknown binaries across windows domain.
PowerShell
2
star
29

massJARM

A threaded implemenation of JARM tool
Python
2
star
30

afl-fuzz-packets

AFL-minimized packet samples for fuzzing
2
star
31

universal-process-privesc

This simple script is a basic wrapper around windows API to elevate current process privilage. Handy for developement and common functions in python.
Python
2
star
32

evtxpickup

Windows AD wide windows event collection script for scaled up forensic investigations.
PowerShell
1
star
33

MCuban_Blog

Mark Cuban blog copy (in PDF)
Python
1
star
34

Codeword-Generator-Collection

Codeword generators written in common programming and scripting languages
JavaScript
1
star