This repository contains IronNet's Threat Research.
| Project | Description |
|---|---|
Cobalt Strike |
Research and indicators for Cobalt Strike |
phishing |
Research and indicators related to phishing |
IronNet's Threat Research Teams
OSINT Cybersecurity Tools Welcome to the World of OSINT: An ongoing collection of awesome tools and frameworks, best security software practices, libr
CAPE: Malware Configuration And Payload Extraction CAPE is a malware sandbox. It is derived from Cuckoo and is designed to automate the process of mal
The Recon-ng Framework Recon-ng content now available on Pluralsight! Recon-ng is a full-featured reconnaissance framework designed with the goal of p
Glass是一款针对资产列表的快速指纹识别工具,通过调用Fofa/ZoomEye/Shodan/360等api接口快速查询资产信息并识别重点资产的指纹,也可针对IP/IP段或资产列表进行快速的指纹识别。
Log4j command generator Generate commands for CVE-2021-44228. Description The vulnerability exists due to the Log4j processor's handling of log messag
SSH server & client auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
Threagile is an open-source toolkit for agile threat modeling:
truffleHog Searches through git repositories for secrets, digging deep into commit history and branches. This is effective at finding secrets accident
QHack 2022 Problems from Coding Challenges 2022. Rules and how it works To test
The Python SE Dopp Kit is a social engineering toolkit with many purposes. It contains 5 different modules designed to be of assistance in different s
rpckiller This script checks for any possible SSRF dns/http interactions in xmlrpc.php pingback feature and with that you can further try to escalate
edgedressing One day while experimenting with airpwn-ng, I noticed unexpected GET requests on the target node. The node in question happened to be a W
MacPer A python based tool that executes various CVEs to gain root privileges as root on various MAC OS platforms. Not all of the exploits directly sp
Blinder Have you found a blind SQL injection? Great! Now you need to export it, but are you too lazy to sort through the values? Most likely,
Log4jFuzz log4j vuln fuzz/scan USE // it's use localhost udp server to check target vuln. python3 log4jFuzz.py [option] optional arguments: -u URL,
Pestilence - The Malware Database [] Screenshot Pestilence is a project created to make the possibility of malware analysis open and available to the
ExProlog ProxyLogon Full Exploit Chain PoC (CVE-2021–26855, CVE-2021–26857, CVE-2021–26858, CVE-2021–27065) Usage: exprolog.py [OPTIONS] ExProlog -
⚜️ Berserker ⚜️ An unique Python3 obfuscator using Kyrie Eleison's encryption protocol, written in Python3. 📋 Examples 📋 Unobfuscated: input("Hello
vulnz Tool for finding php source code vulnerabilities. Scans PHP source code and prints out potentially dangerous lines. This tool is useful for secu
By: Seanpm2001, Et; Al. Top README.md Read this article in a different language Sorted by: A-Z Sorting options unavailable ( af Afrikaans Afrikaans |
7 Jul 01, 2022
1k Dec 30, 2022
2.4k Jan 07, 2023
764 Jan 05, 2023
1 Jan 03, 2022
1.4k Dec 31, 2022
425 Jan 07, 2023
10.1k Jan 09, 2023
1 Feb 14, 2022
48 Nov 26, 2022
33 Sep 23, 2022
43 Dec 23, 2022
20 Nov 30, 2022
10 Dec 06, 2022
3 Dec 22, 2021
47 Dec 21, 2022
130 Dec 15, 2022
81 Dec 07, 2022
1 Jan 14, 2022
2 Sep 12, 2022