APT & CyberCriminal Campaign Collection

Living Off The Land Drivers

Elastic Security detection content for Endpoint

A secure sandbox environment for malware developers and red teamers to test payloads against detection mechanisms before deployment. Integrates with LLM agents via MCP for enhanced analysis capabil…

#supply #chain #attack #detection

Extracted Yara rules from Windows Defender mpavbase and mpasbase

A repository of code signing certificates known to have been leaked or stolen, then abused by threat actors

Just a git repo for the sleepmask detection rule i found in https://codex-7.gitbook.io/codexs-terminal-window/blue-team/detecting-cobalt-strike/sleep-mask-kit-iocs