infosecn1nja
/ plugx.profile
Last active
April 19, 2022 07:35
Cobalt Strike Malleable C2 Profile - PlugX
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # | |
| # PlugX Profile | |
| # Author: @infosecn1nja | |
| # | |
| # https://github.com/silence-is-best/c2db/blob/master/README.md | |
| set sleeptime "30000"; # use a ~30s delay between callbacks | |
| set jitter "10"; # throw in a 10% jitter | |
| stage { |
infosecn1nja
/ cisa_kev_poc_analysis.py
Last active
January 9, 2025 12:06
The cisa_kev_poc_analysis.py script is designed to facilitate the analysis of Common Vulnerabilities and Exposures (CVEs) listed in the CISA Known Exploited Vulnerabilities (KEV) Catalog by correlating them with Proof-of-Concept (PoC) data from the PoC-in-GitHub repository.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import os | |
| import json | |
| import zipfile | |
| import urllib.request | |
| import argparse | |
| from collections import Counter | |
| from datetime import datetime | |
| # Argument parser for dynamic filtering and settings | |
| parser = argparse.ArgumentParser(description="Filter and analyze CVEs based on CISA KEV and GitHub PoC data.") |
OlderNewer