General
-
Target
Red Team Ops II.zip
-
Size
74.3MB
-
MD5
f86a0969b1dd49009e786b01fc80f1e0
-
SHA1
d96beeb9daf6324041e4de3521d26c171f8fb9a6
-
SHA256
b8d08663a369739176e3fc03807fea96b3f0adc8880b5e5597f552d81646cf28
-
SHA512
a25f4caafa2ba0598cbd1097d52799df7c0281576448fa10b7b2ff6968175d95d3dddf8d51070866575ae5fc92303ebc7285933e46656fba693df0589402545d
-
SSDEEP
1572864:lDHGqWvaTJ3ZqxVLUou0IofkKqLAQzAaffN1zJYk6+2v:VHvWvaTJ4xVLZZfd3cAwNJJYA2v
Score
1/10
Malware Config
Signatures
Files
-
Red Team Ops II.zip
Password: pwn3rw
-
Red Team Ops II/.obsidian/app.json
-
Red Team Ops II/.obsidian/appearance.json
-
Red Team Ops II/.obsidian/core-plugins.json
-
Red Team Ops II/.obsidian/hotkeys.json
-
Red Team Ops II/.obsidian/workspace
-
Red Team Ops II/1. Course Introduction.png
-
Red Team Ops II/1. Getting Started/1. Course Introduction.md
-
Red Team Ops II/1. Getting Started/2. Accessing Snap Labs.md
-
Red Team Ops II/1. Getting Started/3. Getting Support.md
-
Red Team Ops II/1. Getting Started/6. Infrastructure Design.png
-
Red Team Ops II/1. Getting Started/7. Infrastructure Design.png
-
Red Team Ops II/10. HTTPS Listener for Redirector.png
-
Red Team Ops II/11. User Agent Rules.png
-
Red Team Ops II/12. C2 Resiliency.png
-
Red Team Ops II/13. C2 Resiliency.png
-
Red Team Ops II/14. External C2.png
-
Red Team Ops II/15. External C2.png
-
Red Team Ops II/16. MessageBox in C++.png
-
Red Team Ops II/17. MessageBox in C++.png
-
Red Team Ops II/18. MessageBox in C_.png
-
Red Team Ops II/19. Ordinals.png
-
Red Team Ops II/2. Accessing Snap Labs.png
-
Red Team Ops II/2. C2 Infrastructure/1. Defence in Depth.md
-
Red Team Ops II/2. C2 Infrastructure/10. User Agent Rules.md
-
Red Team Ops II/2. C2 Infrastructure/11. Cookie Rules.md
-
Red Team Ops II/2. C2 Infrastructure/12. URI & Query Rules.md
-
Red Team Ops II/2. C2 Infrastructure/13. cs2modrewrite.md
-
Red Team Ops II/2. C2 Infrastructure/14. C2 Resiliency.md
-
Red Team Ops II/2. C2 Infrastructure/15. Beacon Staging.md
-
Red Team Ops II/2. C2 Infrastructure/16. External C2.md
-
Red Team Ops II/2. C2 Infrastructure/2. Infrastructure Design.md
-
Red Team Ops II/2. C2 Infrastructure/3. Apache Installation.md
-
Red Team Ops II/2. C2 Infrastructure/4. Generate SSL Certificates.md
-
Red Team Ops II/2. C2 Infrastructure/5. Java KeyStore.md
-
Red Team Ops II/2. C2 Infrastructure/6. HTTPS Listener for Redirector.md
-
Red Team Ops II/2. C2 Infrastructure/7. SSH Tunnel.md
-
Red Team Ops II/2. C2 Infrastructure/8. autossh.md
-
Red Team Ops II/2. C2 Infrastructure/9. Enabling htaccess.md
-
Red Team Ops II/2. C2 Infrastructure/Apache SSL Demo.mp4
-
Red Team Ops II/2. C2 Infrastructure/C2 Resiliency Demo.mp4
-
Red Team Ops II/2. C2 Infrastructure/Java KeyStore Demo.mp4
-
Red Team Ops II/20. Ordinals.png
-
Red Team Ops II/21. MessageBox in VBA.png
-
Red Team Ops II/22. DInvoke.png
-
Red Team Ops II/23. MessageBox with DInvoke.png
-
Red Team Ops II/24. CreateThread.png
-
Red Team Ops II/25. CreateRemoteThread.png
-
Red Team Ops II/26. QueueUserAPC.png
-
Red Team Ops II/27. NtMapViewOfSection.png
-
Red Team Ops II/28. SpawnTo.png
-
Red Team Ops II/29. SpawnTo.png
-
Red Team Ops II/3. Accessing Snap Labs.png
-
Red Team Ops II/3. Windows APIs/1. WinAPI.md
-
Red Team Ops II/3. Windows APIs/10. CreateProcess in VBA.md
-
Red Team Ops II/3. Windows APIs/11. DInvoke.md
-
Red Team Ops II/3. Windows APIs/12. MessageBox with DInvoke.md
-
Red Team Ops II/3. Windows APIs/13. CreateProcess with DInvoke.md
-
Red Team Ops II/3. Windows APIs/2. MessageBox in C++.md
-
Red Team Ops II/3. Windows APIs/3. CreateProcess in C++.md
-
Red Team Ops II/3. Windows APIs/4. PInvoke.md
-
Red Team Ops II/3. Windows APIs/5. MessageBox in C#.md
-
Red Team Ops II/3. Windows APIs/6. Type Marshalling.md
-
Red Team Ops II/3. Windows APIs/7. CreateProcess in C#.md
-
Red Team Ops II/3. Windows APIs/8. Ordinals.md
-
Red Team Ops II/3. Windows APIs/9. MessageBox in VBA.md
-
Red Team Ops II/3. Windows APIs/CreateProcess_DInvoke.zip
Password: pwn3rw
-
Program.cs
-
Win32.cs
-
Red Team Ops II/30. SpawnTo.png
-
Red Team Ops II/31. PPID Spoofing.png
-
Red Team Ops II/32. PPID Spoofing.png
-
Red Team Ops II/33. PPID Spoofing.png
-
Red Team Ops II/34. Command Line Spoofing.png
-
Red Team Ops II/35. Command Line Spoofing.png
-
Red Team Ops II/36. Command Line Spoofing.png
-
Red Team Ops II/37. Session Prepping.png
-
Red Team Ops II/38. Session Prepping.png
-
Red Team Ops II/39. Session Prepping.png
-
Red Team Ops II/4. Accessing Snap Labs.png
-
Red Team Ops II/4. Process Injection/1. Process Injection.md
-
Red Team Ops II/4. Process Injection/2. CreateThread.md
-
Red Team Ops II/4. Process Injection/3. CreateRemoteThread.md
-
Red Team Ops II/4. Process Injection/4. QueueUserAPC.md
-
Red Team Ops II/4. Process Injection/5. NtMapViewOfSection.md
-
Red Team Ops II/4. Process Injection/CreateRemoteThread Solution.zip
Password: pwn3rw
-
CreateRemoteThread/Program.cs
-
CreateRemoteThread/Win32.cs
-
Red Team Ops II/4. Process Injection/CreateThread Solution.zip
Password: pwn3rw
-
CreateThread/Program.cs
-
CreateThread/Win32.cs
-
Red Team Ops II/4. Process Injection/NtMapViewOfSection Solution.zip
Password: pwn3rw
-
NtMapViewOfSection/Native.cs
-
NtMapViewOfSection/Program.cs
-
Red Team Ops II/4. Process Injection/QueueUserAPC Solution.zip
Password: pwn3rw
-
QueueUserAPC/Program.cs
-
QueueUserAPC/Win32.cs
-
Red Team Ops II/40. Session Prepping.png
-
Red Team Ops II/41. Session Prepping.png
-
Red Team Ops II/42. Session Prepping.png
-
Red Team Ops II/43. Session Prepping.png
-
Red Team Ops II/44. Image Load Events.png
-
Red Team Ops II/45. Event Tracing for Windows (ETW).png
-
Red Team Ops II/46. Event Tracing for Windows (ETW).png
-
Red Team Ops II/47. RWX & Cleanup.png
-
Red Team Ops II/48. RWX & Cleanup.png
-
Red Team Ops II/49. RWX & Cleanup.png
-
Red Team Ops II/5. Accessing Snap Labs.png
-
Red Team Ops II/5. Defence Evasion/1. Post-Exploitation Behaviours.md
-
Red Team Ops II/5. Defence Evasion/10. RWX & Cleanup.md
-
Red Team Ops II/5. Defence Evasion/11. Sleep Mask Kit.md
-
Red Team Ops II/5. Defence Evasion/12. Thread Stack Spoofing.md
-
Red Team Ops II/5. Defence Evasion/2. SpawnTo.md
-
Red Team Ops II/5. Defence Evasion/3. PPID Spoofing.md
-
Red Team Ops II/5. Defence Evasion/4. Command Line Spoofing.md
-
Red Team Ops II/5. Defence Evasion/5. Network Connections.md
-
Red Team Ops II/5. Defence Evasion/6. Session Prepping.md
-
Red Team Ops II/5. Defence Evasion/7. Image Load Events.md
-
Red Team Ops II/5. Defence Evasion/8. Named Pipes Names.md
-
Red Team Ops II/5. Defence Evasion/9. Event Tracing for Windows (ETW).md
-
Red Team Ops II/50. Sleep Mask Kit.png
-
Red Team Ops II/51. Sleep Mask Kit.png
-
Red Team Ops II/52. Sleep Mask Kit.png
-
Red Team Ops II/53. Sleep Mask Kit.png
-
Red Team Ops II/54. Thread Stack Spoofing.png
-
Red Team Ops II/55. Thread Stack Spoofing.png
-
Red Team Ops II/56. Thread Stack Spoofing.png
-
Red Team Ops II/57. Thread Stack Spoofing.png
-
Red Team Ops II/58. Thread Stack Spoofing.png
-
Red Team Ops II/59. Thread Stack Spoofing.png
-
Red Team Ops II/6. Attack Surface Reduction/1. Attack Surface Reduction.md
-
Red Team Ops II/6. Attack Surface Reduction/2. Block Child Processes.md
-
Red Team Ops II/6. Attack Surface Reduction/3. Block Win32 APIs.md
-
Red Team Ops II/6. Attack Surface Reduction/4. Block Code Injection.md
-
Red Team Ops II/6. Attack Surface Reduction/5. Block PsExecWMI.md
-
Red Team Ops II/6. Attack Surface Reduction/6. Block Credential Stealing from LSASS.md
-
Red Team Ops II/60. Thread Stack Spoofing.png
-
Red Team Ops II/61. Block Child Processes.png
-
Red Team Ops II/62. Block Child Processes.png
-
Red Team Ops II/63. Block Child Processes.png
-
Red Team Ops II/64. Block Child Processes.png
-
Red Team Ops II/65. Block Child Processes.png
-
Red Team Ops II/66. Block Child Processes.png
-
Red Team Ops II/67. Block Win32 APIs.png
-
Red Team Ops II/68. Block Win32 APIs.png
-
Red Team Ops II/69. Block Win32 APIs.png
-
Red Team Ops II/7. Windows Defender Application Control/1. Windows Defender Application Control.md
-
Red Team Ops II/7. Windows Defender Application Control/2. Living Off The Land Binaries, Scripts and Libraries.md
-
Red Team Ops II/7. Windows Defender Application Control/3. Wildcard FilePaths.md
-
Red Team Ops II/7. Windows Defender Application Control/4. User Modifiable Binaries.md
-
Red Team Ops II/7. Windows Defender Application Control/6. Trusted Signers.md
-
Red Team Ops II/7. Windows Defender Application Control/7. Exploiting Vulnerable Applications.md
-
Red Team Ops II/70. Block Code Injection.png
-
Red Team Ops II/71. Block Code Injection.png
-
Red Team Ops II/72. Block PsExecWMI.png
-
Red Team Ops II/73. Block PsExecWMI.png
-
Red Team Ops II/74. Block PsExecWMI.png
-
Red Team Ops II/75. Block PsExecWMI.png
-
Red Team Ops II/76. Trusted Applications.png
-
Red Team Ops II/77. Trusted Signers.png
-
Red Team Ops II/78. Trusted Signers.png
-
Red Team Ops II/79. Trusted Signers.png
-
Red Team Ops II/8. Apache Installation.png
-
Red Team Ops II/8. EDR Evasion/1. Endpoint Detection and Response.md
-
Red Team Ops II/8. EDR Evasion/10. GetSyscallStub.md
-
Red Team Ops II/8. EDR Evasion/100. Kernel Callbacks.png
-
Red Team Ops II/8. EDR Evasion/101. Kernel Callbacks.png
-
Red Team Ops II/8. EDR Evasion/102. Driver Signature Enforcement.png
-
Red Team Ops II/8. EDR Evasion/103. Driver Signature Enforcement.png
-
Red Team Ops II/8. EDR Evasion/11. SysWhispers.md
-
Red Team Ops II/8. EDR Evasion/12. Syscalls & ArtifactKit.md
-
Red Team Ops II/8. EDR Evasion/13. User Defined Reflective Loader.md
-
Red Team Ops II/8. EDR Evasion/14. Kernel Callbacks.md
-
Red Team Ops II/8. EDR Evasion/15. Driver Signature Enforcement.md
-
Red Team Ops II/8. EDR Evasion/2. Detecting the Bad.md
-
Red Team Ops II/8. EDR Evasion/3. IAT Hooking.md
-
Red Team Ops II/8. EDR Evasion/4. Inline Hooking.md
-
Red Team Ops II/8. EDR Evasion/5. Hook Bypass Strategies.md
-
Red Team Ops II/8. EDR Evasion/6. Hooking in Action.md
-
Red Team Ops II/8. EDR Evasion/7. Manual Mapping.md
-
Red Team Ops II/8. EDR Evasion/8. Process Mitigation Policy.md
-
Red Team Ops II/8. EDR Evasion/84. Endpoint Detection and Response.png
-
Red Team Ops II/8. EDR Evasion/85. IAT Hooking.png
-
Red Team Ops II/8. EDR Evasion/86. IAT Hooking.png
-
Red Team Ops II/8. EDR Evasion/87. IAT Hooking.png
-
Red Team Ops II/8. EDR Evasion/88. IAT Hooking.png
-
Red Team Ops II/8. EDR Evasion/89. IAT Hooking.png
-
Red Team Ops II/8. EDR Evasion/9. Syscalls.md
-
Red Team Ops II/8. EDR Evasion/90. Inline Hooking.png
-
Red Team Ops II/8. EDR Evasion/91. Inline Hooking.png
-
Red Team Ops II/8. EDR Evasion/92. Manual Mapping.png
-
Red Team Ops II/8. EDR Evasion/93. Process Mitigation Policy.png
-
Red Team Ops II/8. EDR Evasion/94. Syscalls.png
-
Red Team Ops II/8. EDR Evasion/95. Syscalls.png
-
Red Team Ops II/8. EDR Evasion/96. Syscalls.png
-
Red Team Ops II/8. EDR Evasion/97. GetSyscallStub.png
-
Red Team Ops II/8. EDR Evasion/98. SysWhispers.png
-
Red Team Ops II/8. EDR Evasion/99. Kernel Callbacks.png
-
Red Team Ops II/8. EDR Evasion/DInvokeSyscalls.zip
Password: pwn3rw
-
DinvokeSyscalls.cs
-
Red Team Ops II/8. EDR Evasion/HookBypass-220307-102016.zip
Password: pwn3rw
-
HookBypass.cs
-
Red Team Ops II/8. EDR Evasion/Syscalls & Artifact Kit Demo.mp4
-
Red Team Ops II/80. Trusted Signers.png
-
Red Team Ops II/81. Trusted Signers.png
-
Red Team Ops II/82. Trusted Signers.png
-
Red Team Ops II/83. Trusted Signers.png
-
Red Team Ops II/9. Generate SSL Certificates.png