Binary Defense Systems (@BinaryDefense)
Guthub

BinaryDefense

Twitter logo Share LinkedIn logo Share Facebook logo Share

Top repositories

1

log4j-honeypot-flask

Internal network honeypot for detecting if an attacker or insider threat scans your network for log4j CVE-2021-44228
Python
146
star
2

auto-ossec

Python
139
star
3

goatrider

GoatRider is a simple tool that will dynamically pull down Artillery Threat Intelligence Feeds, TOR, AlienVaults OTX, and the Alexa top 1 million websites and do a comparison to a hostname file or IP file.
Python
135
star
4

YaraMemoryScanner

Simple PowerShell script to enable process scanning with Yara.
PowerShell
81
star
5

beacon-fronting

A simple command line program to help defender test their detections for network beacon patterns and domain fronting
Go
64
star
6

ThreatHuntingJupyterNotebooks

Jupyter Notebook
53
star
7

BinaryDefense.FSharp.Analyzers

Security analyzers for the FSharp (F#) language
F#
36
star
8

IcedDecrypt

IcedID Decryption Tool
Python
27
star
9

GhidraRustDependenciesExtractor

Ghidra script for extracting embedded Rust crate dependency strings from a compiled Rust binary
Python
22
star
10

JsonWrapper

A Myriad plugin for generating statically typed lossless wrappers around JToken given a schema.
F#
15
star
11

glyph-hunter

Python Flask web app that checks names for potential homoglyph characteristics and reports results in json format
Python
4
star
12

decloaker

A script that attempts to decloak symbiote activity, and some other LD_PRELOAD activity
Shell
2
star
13

mining-pools

List of mining pool domain names for use in detection logic
2
star
14

OTX-Microsoft-Logic-App

Microsoft Logic App for consuming Open Threat Exchange (OTX) data in Microsoft Sentinel / Log Analytics Workspace
2
star
15

borat-rat-plugin-emulators

.Net Libraries (DLLs) re-written from scratch that emulate the functionality of Borat RAT for defese testing purposes
C#
2
star
16

RPCFirewall-LogParsers

1
star