Created
September 25, 2024 01:33
-
-
Save fr0gger/6bc90aea8f362bd093e1e6a90ad8636e to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <!DOCTYPE html> | |
| <html> | |
| <head> | |
| <meta charset="UTF-8"> | |
| <meta name="viewport" content="width=device-width, initial-scale=1.0"> | |
| <meta http-equiv="X-UA-Compatible" content="ie=edge"> | |
| <title>Markmap</title> | |
| <style> | |
| * { | |
| margin: 0; | |
| padding: 0; | |
| } | |
| #mindmap { | |
| display: block; | |
| width: 100vw; | |
| height: 100vh; | |
| } | |
| </style> | |
| <link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/[email protected]/dist/style.css"> | |
| </head> | |
| <body> | |
| <svg id="mindmap"></svg> | |
| <script src="https://cdn.jsdelivr.net/npm/[email protected]/dist/d3.min.js"></script><script src="https://cdn.jsdelivr.net/npm/[email protected]/dist/browser/index.js"></script><script src="https://cdn.jsdelivr.net/npm/[email protected]/dist/index.js"></script><script>(()=>{setTimeout(()=>{const{markmap:q,mm:v}=window,j=new q.Toolbar;j.attach(v);const we=j.render();we.setAttribute("style","position:absolute;bottom:20px;right:20px"),document.body.append(we)})})()</script><script>((f,d,h,u)=>{const g=f();window.mm=g.Markmap.create("svg#mindmap",(d||g.deriveOptions)(u),h)})(()=>window.markmap,null,{"content":"Ransomware Tool Matrix","children":[{"content":"Remote Monitoring & Management (RMM) Tools","children":[{"content":"Action1","children":[],"payload":{"lines":"4,5"}},{"content":"AnyDesk","children":[],"payload":{"lines":"5,6"}},{"content":"Atera","children":[],"payload":{"lines":"6,7"}},{"content":"ASG Remote Desktop","children":[],"payload":{"lines":"7,8"}},{"content":"BeAnywhere","children":[],"payload":{"lines":"8,9"}},{"content":"Chrome Remote Desktop","children":[],"payload":{"lines":"9,10"}},{"content":"Domotz","children":[],"payload":{"lines":"10,11"}},{"content":"DWAgent","children":[],"payload":{"lines":"11,12"}},{"content":"eHorus","children":[],"payload":{"lines":"12,13"}},{"content":"FixMeIt","children":[],"payload":{"lines":"13,14"}},{"content":"Fleetdeck","children":[],"payload":{"lines":"14,15"}},{"content":"GoToAssist","children":[],"payload":{"lines":"15,16"}},{"content":"ITarian","children":[],"payload":{"lines":"16,17"}},{"content":"Level.io","children":[],"payload":{"lines":"17,18"}},{"content":"LogMeIn","children":[],"payload":{"lines":"18,19"}},{"content":"ManageEngineRMM","children":[],"payload":{"lines":"19,20"}},{"content":"MeshAgent","children":[],"payload":{"lines":"20,21"}},{"content":"MobaXterm","children":[],"payload":{"lines":"21,22"}},{"content":"N-Able","children":[],"payload":{"lines":"22,23"}},{"content":"NetSupport","children":[],"payload":{"lines":"23,24"}},{"content":"Parsec","children":[],"payload":{"lines":"24,25"}},{"content":"PDQ Deploy","children":[],"payload":{"lines":"25,26"}},{"content":"PowerAdmin","children":[],"payload":{"lines":"26,27"}},{"content":"Pulseway","children":[],"payload":{"lines":"27,28"}},{"content":"Radmin","children":[],"payload":{"lines":"28,29"}},{"content":"Remote Manipulator System (RMS)","children":[],"payload":{"lines":"29,30"}},{"content":"RemotePC","children":[],"payload":{"lines":"30,31"}},{"content":"RemoteUtilities","children":[],"payload":{"lines":"31,32"}},{"content":"RPort","children":[],"payload":{"lines":"32,33"}},{"content":"RSAT","children":[],"payload":{"lines":"33,34"}},{"content":"RustDesk","children":[],"payload":{"lines":"34,35"}},{"content":"ScreenConnect","children":[],"payload":{"lines":"35,36"}},{"content":"SimpleHelp","children":[],"payload":{"lines":"36,37"}},{"content":"Sorillus","children":[],"payload":{"lines":"37,38"}},{"content":"Splashtop","children":[],"payload":{"lines":"38,39"}},{"content":"SuperOps","children":[],"payload":{"lines":"39,40"}},{"content":"Supremo","children":[],"payload":{"lines":"40,41"}},{"content":"Syncro","children":[],"payload":{"lines":"41,42"}},{"content":"TacticalRMM","children":[],"payload":{"lines":"42,43"}},{"content":"TeamViewer","children":[],"payload":{"lines":"43,44"}},{"content":"TightVNC","children":[],"payload":{"lines":"44,45"}},{"content":"TrendMicro Basecamp","children":[],"payload":{"lines":"45,46"}},{"content":"Twingate","children":[],"payload":{"lines":"46,47"}},{"content":"ZeroTier","children":[],"payload":{"lines":"47,48"}},{"content":"ZohoAssist","children":[],"payload":{"lines":"48,50"}}],"payload":{"lines":"2,3"}},{"content":"Exfiltration Tools","children":[{"content":"Anonfiles","children":[],"payload":{"lines":"52,53"}},{"content":"Bashupload","children":[],"payload":{"lines":"53,54"}},{"content":"Catbox.moe","children":[],"payload":{"lines":"54,55"}},{"content":"Cyberduck","children":[],"payload":{"lines":"55,56"}},{"content":"Dropbox","children":[],"payload":{"lines":"56,57"}},{"content":"Dropfiles","children":[],"payload":{"lines":"57,58"}},{"content":"Dropmefiles","children":[],"payload":{"lines":"58,59"}},{"content":"FileZilla","children":[],"payload":{"lines":"59,60"}},{"content":"FreeFileSync","children":[],"payload":{"lines":"60,61"}},{"content":"File.io","children":[],"payload":{"lines":"61,62"}},{"content":"Gofile.io","children":[],"payload":{"lines":"62,63"}},{"content":"MEGA","children":[],"payload":{"lines":"63,64"}},{"content":"PrivatLab","children":[],"payload":{"lines":"64,65"}},{"content":"ProtonMail","children":[],"payload":{"lines":"65,66"}},{"content":"PSCP","children":[],"payload":{"lines":"66,67"}},{"content":"pCloud","children":[],"payload":{"lines":"67,68"}},{"content":"Qaz.im","children":[],"payload":{"lines":"68,69"}},{"content":"Restic","children":[],"payload":{"lines":"69,70"}},{"content":"RClone","children":[],"payload":{"lines":"70,71"}},{"content":"Sendspace","children":[],"payload":{"lines":"71,72"}},{"content":"share.riseup.net","children":[],"payload":{"lines":"72,73"}},{"content":"Temp.sh","children":[],"payload":{"lines":"73,74"}},{"content":"Tempsend","children":[],"payload":{"lines":"74,75"}},{"content":"Transfert-my-files","children":[],"payload":{"lines":"75,76"}},{"content":"Transfer.sh","children":[],"payload":{"lines":"76,77"}},{"content":"UFile","children":[],"payload":{"lines":"77,78"}},{"content":"WinSCP","children":[],"payload":{"lines":"78,80"}}],"payload":{"lines":"50,51"}},{"content":"Credential Theft Tools","children":[{"content":"AADInternals","children":[],"payload":{"lines":"82,83"}},{"content":"aws_consoler","children":[],"payload":{"lines":"83,84"}},{"content":"BetterSafetyKatz","children":[],"payload":{"lines":"84,85"}},{"content":"DonPAPI","children":[],"payload":{"lines":"85,86"}},{"content":"GitGuardian","children":[],"payload":{"lines":"86,87"}},{"content":"GrabChrome","children":[],"payload":{"lines":"87,88"}},{"content":"GrabFF","children":[],"payload":{"lines":"88,89"}},{"content":"Jecretz","children":[],"payload":{"lines":"89,90"}},{"content":"KeeThief","children":[],"payload":{"lines":"90,91"}},{"content":"LaZagne","children":[],"payload":{"lines":"91,92"}},{"content":"LostMyPassword","children":[],"payload":{"lines":"92,93"}},{"content":"MAGNET RAM Capture","children":[],"payload":{"lines":"93,94"}},{"content":"Mimikatz","children":[],"payload":{"lines":"94,95"}},{"content":"MIT Kerberos Ticket Manager","children":[],"payload":{"lines":"95,96"}},{"content":"NirSoft BulletsPassView","children":[],"payload":{"lines":"96,97"}},{"content":"NirSoft ChromePass","children":[],"payload":{"lines":"97,98"}},{"content":"NirSoft Dialupass","children":[],"payload":{"lines":"98,99"}},{"content":"NirSoft ExtPassword","children":[],"payload":{"lines":"99,100"}},{"content":"NirSoft IEPassView (iepv)","children":[],"payload":{"lines":"100,101"}},{"content":"NirSoft MailPassView","children":[],"payload":{"lines":"101,102"}},{"content":"NirSoft Netpass","children":[],"payload":{"lines":"102,103"}},{"content":"NirSoft OperaPassView","children":[],"payload":{"lines":"103,104"}},{"content":"NirSoft RouterPassView","children":[],"payload":{"lines":"104,105"}},{"content":"NirSoft RemoteDesktopPassView (rdpv)","children":[],"payload":{"lines":"105,106"}},{"content":"NirSoft SniffPass","children":[],"payload":{"lines":"106,107"}},{"content":"NirSoft VNCPassView","children":[],"payload":{"lines":"107,108"}},{"content":"NirSoft WebBrowserPassView","children":[],"payload":{"lines":"108,109"}},{"content":"NirSoft WirelessKeyView","children":[],"payload":{"lines":"109,110"}},{"content":"PasswordFox","children":[],"payload":{"lines":"110,111"}},{"content":"ProcDump","children":[],"payload":{"lines":"111,112"}},{"content":"RDP Recognizer","children":[],"payload":{"lines":"112,113"}},{"content":"Router Scan","children":[],"payload":{"lines":"113,114"}},{"content":"SecretServerSecretStealer","children":[],"payload":{"lines":"114,115"}},{"content":"SessionGopher","children":[],"payload":{"lines":"115,116"}},{"content":"SharpChrome","children":[],"payload":{"lines":"116,117"}},{"content":"SharpDump","children":[],"payload":{"lines":"117,118"}},{"content":"SharpKatz","children":[],"payload":{"lines":"118,119"}},{"content":"Snaffler","children":[],"payload":{"lines":"119,120"}},{"content":"Trufflehog","children":[],"payload":{"lines":"120,121"}},{"content":"Veeam-Get-Creds","children":[],"payload":{"lines":"121,122"}},{"content":"Volatility","children":[],"payload":{"lines":"122,123"}},{"content":"XenArmor","children":[],"payload":{"lines":"123,125"}}],"payload":{"lines":"80,81"}},{"content":"Defense Evasion Tools","children":[{"content":"Avast Anti-Rootkit driver","children":[],"payload":{"lines":"127,128"}},{"content":"Backstab (Process Explorer driver)","children":[],"payload":{"lines":"128,129"}},{"content":"Bedevil","children":[],"payload":{"lines":"129,130"}},{"content":"Darkside EDR Killer","children":[],"payload":{"lines":"130,131"}},{"content":"Defender Control","children":[],"payload":{"lines":"131,132"}},{"content":"Dell Client driver","children":[],"payload":{"lines":"132,133"}},{"content":"EDRSandBlast","children":[],"payload":{"lines":"133,134"}},{"content":"EMCO UnLock IT","children":[],"payload":{"lines":"134,135"}},{"content":"Eraser","children":[],"payload":{"lines":"135,136"}},{"content":"FileShredder","children":[],"payload":{"lines":"136,137"}},{"content":"GIGABYTE Motherboard driver","children":[],"payload":{"lines":"137,138"}},{"content":"GMER","children":[],"payload":{"lines":"138,139"}},{"content":"IOBit","children":[],"payload":{"lines":"139,140"}},{"content":"MSI Afterburner driver","children":[],"payload":{"lines":"140,141"}},{"content":"NSudo","children":[],"payload":{"lines":"141,142"}},{"content":"PCHunter","children":[],"payload":{"lines":"142,143"}},{"content":"PowerTool","children":[],"payload":{"lines":"143,144"}},{"content":"ProcessHacker","children":[],"payload":{"lines":"144,145"}},{"content":"RealBlindingEDR","children":[],"payload":{"lines":"145,146"}},{"content":"Reaper","children":[],"payload":{"lines":"146,147"}},{"content":"TDSSKiller","children":[],"payload":{"lines":"147,148"}},{"content":"ThreatFire System Monitor driver","children":[],"payload":{"lines":"148,149"}},{"content":"Universal Virus Sniffer","children":[],"payload":{"lines":"149,150"}},{"content":"VirtualBox","children":[],"payload":{"lines":"150,151"}},{"content":"YDArk","children":[],"payload":{"lines":"151,152"}},{"content":"Zemana Anti-Rootkit driver","children":[],"payload":{"lines":"152,154"}}],"payload":{"lines":"125,126"}},{"content":"Networking Tools","children":[{"content":"Chisel","children":[],"payload":{"lines":"156,157"}},{"content":"Cloudflared","children":[],"payload":{"lines":"157,158"}},{"content":"GOST","children":[],"payload":{"lines":"158,159"}},{"content":"OpenSSH","children":[],"payload":{"lines":"159,160"}},{"content":"Ligolo","children":[],"payload":{"lines":"160,161"}},{"content":"Ngrok","children":[],"payload":{"lines":"161,162"}},{"content":"NSOCKS","children":[],"payload":{"lines":"162,163"}},{"content":"Plink","children":[],"payload":{"lines":"163,164"}},{"content":"Proxifier","children":[],"payload":{"lines":"164,165"}},{"content":"Rsocks","children":[],"payload":{"lines":"165,166"}},{"content":"Socat","children":[],"payload":{"lines":"166,167"}},{"content":"Sshimpanzee","children":[],"payload":{"lines":"167,168"}},{"content":"Tailscale","children":[],"payload":{"lines":"168,169"}},{"content":"Termite","children":[],"payload":{"lines":"169,170"}},{"content":"TrueSocks","children":[],"payload":{"lines":"170,171"}},{"content":"Wstunnel","children":[],"payload":{"lines":"171,173"}}],"payload":{"lines":"154,155"}},{"content":"Discovery and Enumeration Tools","children":[{"content":"ADExplorer","children":[],"payload":{"lines":"175,176"}},{"content":"ADRecon","children":[],"payload":{"lines":"176,177"}},{"content":"AdFind","children":[],"payload":{"lines":"177,178"}},{"content":"Advanced IP Scanner","children":[],"payload":{"lines":"178,179"}},{"content":"Advanced Port Scanner","children":[],"payload":{"lines":"179,180"}},{"content":"Angry IP Scanner","children":[],"payload":{"lines":"180,181"}},{"content":"AWS Systems Manager Inventory","children":[],"payload":{"lines":"181,182"}},{"content":"Bloodhound","children":[],"payload":{"lines":"182,183"}},{"content":"Cent Browser","children":[],"payload":{"lines":"183,184"}},{"content":"Dsquery","children":[],"payload":{"lines":"184,185"}},{"content":"Lansweeper","children":[],"payload":{"lines":"185,186"}},{"content":"Nbtscan","children":[],"payload":{"lines":"186,187"}},{"content":"NirSoft WinLister","children":[],"payload":{"lines":"187,188"}},{"content":"Nmap","children":[],"payload":{"lines":"188,189"}},{"content":"Nping","children":[],"payload":{"lines":"189,190"}},{"content":"ManageEngine LANDESK","children":[],"payload":{"lines":"190,191"}},{"content":"Masscan","children":[],"payload":{"lines":"191,192"}},{"content":"PDQ Inventory","children":[],"payload":{"lines":"192,193"}},{"content":"PingCastle","children":[],"payload":{"lines":"193,194"}},{"content":"PowerView","children":[],"payload":{"lines":"194,195"}},{"content":"PsInfo","children":[],"payload":{"lines":"195,196"}},{"content":"PSNmap","children":[],"payload":{"lines":"196,197"}},{"content":"ReconFTW","children":[],"payload":{"lines":"197,198"}},{"content":"RustScan","children":[],"payload":{"lines":"198,199"}},{"content":"RVTools","children":[],"payload":{"lines":"199,200"}},{"content":"S3 Browser","children":[],"payload":{"lines":"200,201"}},{"content":"Seatbelt","children":[],"payload":{"lines":"201,202"}},{"content":"ServiceControl (sc.exe)","children":[],"payload":{"lines":"202,203"}},{"content":"SharpHound","children":[],"payload":{"lines":"203,204"}},{"content":"ShareFinder","children":[],"payload":{"lines":"204,205"}},{"content":"SharpShares","children":[],"payload":{"lines":"205,206"}},{"content":"SharpView","children":[],"payload":{"lines":"206,207"}},{"content":"SoftPerfect LanSearchPro","children":[],"payload":{"lines":"207,208"}},{"content":"SoftPerfect NetScan","children":[],"payload":{"lines":"208,209"}},{"content":"TXPortMap","children":[],"payload":{"lines":"209,210"}},{"content":"VMware PowerCLI","children":[],"payload":{"lines":"210,212"}}],"payload":{"lines":"173,174"}},{"content":"Offensive Security Tools","children":[{"content":"Brute Ratel C4","children":[],"payload":{"lines":"214,215"}},{"content":"BurpSuite","children":[],"payload":{"lines":"215,216"}},{"content":"Chashell","children":[],"payload":{"lines":"216,217"}},{"content":"CIMplant","children":[],"payload":{"lines":"217,218"}},{"content":"Cobalt Strike","children":[],"payload":{"lines":"218,219"}},{"content":"ConPtyShell","children":[],"payload":{"lines":"219,220"}},{"content":"Commando VM","children":[],"payload":{"lines":"220,221"}},{"content":"CrackMapExec","children":[],"payload":{"lines":"221,222"}},{"content":"Evilginx","children":[],"payload":{"lines":"222,223"}},{"content":"Godzilla Web Shell","children":[],"payload":{"lines":"223,224"}},{"content":"Impacket","children":[],"payload":{"lines":"224,225"}},{"content":"Kerbrute","children":[],"payload":{"lines":"225,226"}},{"content":"Koadic","children":[],"payload":{"lines":"226,227"}},{"content":"LAPS Toolkit","children":[],"payload":{"lines":"227,228"}},{"content":"LINpeas","children":[],"payload":{"lines":"228,229"}},{"content":"Metasploit","children":[],"payload":{"lines":"229,230"}},{"content":"Meterpreter","children":[],"payload":{"lines":"230,231"}},{"content":"MicroBurst","children":[],"payload":{"lines":"231,232"}},{"content":"mitm6","children":[],"payload":{"lines":"232,233"}},{"content":"OWASP ZAP","children":[],"payload":{"lines":"233,234"}},{"content":"Pacu","children":[],"payload":{"lines":"234,235"}},{"content":"PowerShell Empire","children":[],"payload":{"lines":"235,236"}},{"content":"PowerSploit","children":[],"payload":{"lines":"236,237"}},{"content":"PwnTools","children":[],"payload":{"lines":"237,238"}},{"content":"Responder","children":[],"payload":{"lines":"238,239"}},{"content":"ReverseSSH Shell","children":[],"payload":{"lines":"239,240"}},{"content":"Rubeus","children":[],"payload":{"lines":"240,241"}},{"content":"SharpSploit","children":[],"payload":{"lines":"241,242"}},{"content":"Sliver","children":[],"payload":{"lines":"242,243"}},{"content":"TinyMet","children":[],"payload":{"lines":"243,244"}},{"content":"ThunderShell","children":[],"payload":{"lines":"244,245"}},{"content":"WinPEAS","children":[],"payload":{"lines":"245,247"}}],"payload":{"lines":"212,213"}},{"content":"Living-off-the-Land Binaries and Scripts","children":[{"content":"BCDEdit","children":[],"payload":{"lines":"249,250"}},{"content":"BITSAdmin","children":[],"payload":{"lines":"250,251"}},{"content":"NTDS Utility (ntdsutil)","children":[],"payload":{"lines":"251,252"}},{"content":"PAExec","children":[],"payload":{"lines":"252,253"}},{"content":"Process Explorer","children":[],"payload":{"lines":"253,254"}},{"content":"PsExec","children":[],"payload":{"lines":"254,255"}},{"content":"Minidump","children":[],"payload":{"lines":"255,256"}},{"content":"Windows Event Utility (wevtutil)","children":[],"payload":{"lines":"256,257"}},{"content":"WinExe","children":[],"payload":{"lines":"257,258"}},{"content":"WMIC","children":[],"payload":{"lines":"258,259"}}],"payload":{"lines":"247,248"}}],"payload":{"lines":"0,1"}},null)</script> | |
| </body> | |
| </html> |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment