$$\ $$\ $$$$$$\ $$$$$$\ $$\ $$\
$$ | $$ | $$ __$$\ $$ __$$\ $$ | $$ |
$$ | $$$$$$\ $$$$$$\ $$ / \__|$$ / \__|$$ | $$ |
$$ | $$ __$$\\_$$ _| $$ | \$$$$$$\ \$$\ $$ |
$$ | $$ / $$ | $$ | $$ | \____$$\ \$$\$$ /
$$ | $$ | $$ | $$ |$$\ $$ | $$\ $$\ $$ | \$$$ /
$$$$$$$$\\$$$$$$ | \$$$$ |\$$$$$$ |\$$$$$$ | \$ /
\________|\______/ \____/ \______/ \______/ \_/
This project aims to streamline work of detection engineers and threat hunters. It's purpose is to gather different data sources from Living off the Land oprojects and gathers them into .csv files to easily work with them inside various security tools like SIEM. There is feature which adds "is_legit" column. Cou can use it while filtering lines by setting true or false values.
You can check how exported .csv files look in directory
You can find nice source for all Living off the Land projects at https://lolol.farm/
To retrieve all implemented projects follow these steps:
git clone https://github.com/DarkWizardCatcher/LotCSV.git
cd LotCSV
pip install -r requirements.txt
python LotCSV.py -a -alp
Otherwise use python LotCSV.py -h to get help.
- https://www.bootloaders.io/
- https://gtfobins.github.io/
- https://hijacklibs.net/
- https://lofl-project.github.io/
- https://lolad-project.github.io/
- https://lolrmm.io/
- https://lolbas-project.github.io/
- https://www.loldrivers.io/
- https://lolc2.github.io/
- https://lottunnels.github.io/
- https://lolesxi-project.github.io/LOLESXi/
- https://lots-project.com
- https://www.iana.org/assignments/service-names-port-numbers/
- https://www.loobins.io
- https://github.com/ReversecLabs/lolcerts
- https://lolapps-project.github.io
- https://lotwebhooks.github.io/index.html
- https://wadcoms.github.io