credential-access

Here are 7 public repositories matching this topic...

rvong65 / breach-precursor-detector

Unsupervised anomaly detector that flags early breach precursors (credential dumping, process injection) using Isolation Forest on EDR-style process features. Inspired by CrowdStrike-style EDR — includes confidence gating and human-readable explanations—deployed on Streamlit Cloud.

open-source machine-learning scikit-learn data-visualization cybersecurity feature-engineering unsupervised-learning anomaly-detection isolation-forest edr threat-detection security-analytics streamlit credential-access

Updated Mar 17, 2026
Python

Zeltoc / wazuh-lsass-credential-access-detection

Star

Wazuh SIEM lab detecting lsass credential access using Sysmon Event ID 10 and a custom rule targeting PROCESS_ALL_ACCESS (0x1FFFFF). Built in Proxmox homelab.

incident-response sysmon siem homelab wazuh blue-team mitre-attack windows-security lsass detection-engineering credential-access t1003

Updated May 7, 2026

iremsahin088 / java-bruteforce-simulator

Star

Java program simulating ethical brute-force password attacks for cybersecurity practice.

java cybersecurity brute-force ethical-hacking bruteforce-attacks mitre-attack password-security credential-access

Updated Aug 30, 2025
Java

goubx / hunting-exposed-vm-bruteforce

Star

Threat hunt for brute force login attempts against internet-exposed VMs using Microsoft Defender for Endpoint and KQL. Maps findings to MITRE ATT&CK T1110.

brute-force-attacks mitre-attack windows-11 kql microsoft-defender-for-endpoint credential-access

Updated Jun 12, 2026

SaeedEzaty / -LSA-Secrets-Dumper---Windows-Security-Research-Tool

Star

# LSA Secrets Dumper - Windows Security Research Tool

red-team c-programming security-research windows-security edr-evasion credential-access lsa-secrets mimikatz-alternative token-stealing

Updated Nov 11, 2025
C

TeflonJuan-tech / kali-to-splunk-authentication-detection

Star

Simulated RDP brute force from Kali to Windows with Splunk detection, MITRE ATT&CK mapping (T1110), alerting, and defensive hardening.

splunk kali-linux blue-team mitre-attack windows-security detection-engineering t1110 cybersecurity-lab credential-access

Updated Feb 19, 2026

pakagronglb / poisoned-credentials-lab-cyberdefenders

Sponsor

Star

This repository contains a complete, analyst-grade walkthrough of the PoisonedCredentials lab form CyberDefenders, focusing on LLMNR/NBT-NS poisoning and network forensic analysis using Wireshark

collection network-forensics wireshark blueteam cyberdefenders credential-access

Updated Jan 16, 2026

Improve this page

Add a description, image, and links to the credential-access topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the credential-access topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

credential-access

Here are 7 public repositories matching this topic...

rvong65 / breach-precursor-detector

Zeltoc / wazuh-lsass-credential-access-detection

iremsahin088 / java-bruteforce-simulator

goubx / hunting-exposed-vm-bruteforce

SaeedEzaty / -LSA-Secrets-Dumper---Windows-Security-Research-Tool

TeflonJuan-tech / kali-to-splunk-authentication-detection

pakagronglb / poisoned-credentials-lab-cyberdefenders

Improve this page

Add this topic to your repo