There are no reviews yet. Be the first to send feedback to the community and the maintainers!
log4j-honeypot-flask
Internal network honeypot for detecting if an attacker or insider threat scans your network for log4j CVE-2021-44228auto-ossec
goatrider
GoatRider is a simple tool that will dynamically pull down Artillery Threat Intelligence Feeds, TOR, AlienVaults OTX, and the Alexa top 1 million websites and do a comparison to a hostname file or IP file.YaraMemoryScanner
Simple PowerShell script to enable process scanning with Yara.beacon-fronting
A simple command line program to help defender test their detections for network beacon patterns and domain frontingThreatHuntingJupyterNotebooks
BinaryDefense.FSharp.Analyzers
Security analyzers for the FSharp (F#) languageIcedDecrypt
IcedID Decryption ToolGhidraRustDependenciesExtractor
Ghidra script for extracting embedded Rust crate dependency strings from a compiled Rust binaryJsonWrapper
A Myriad plugin for generating statically typed lossless wrappers around JToken given a schema.glyph-hunter
Python Flask web app that checks names for potential homoglyph characteristics and reports results in json formatHiddenTaskHunter
ARC-Labs-Hunting-Queries
decloaker
A script that attempts to decloak symbiote activity, and some other LD_PRELOAD activitymining-pools
List of mining pool domain names for use in detection logicOTX-Microsoft-Logic-App
Microsoft Logic App for consuming Open Threat Exchange (OTX) data in Microsoft Sentinel / Log Analytics Workspaceborat-rat-plugin-emulators
.Net Libraries (DLLs) re-written from scratch that emulate the functionality of Borat RAT for defese testing purposesRPCFirewall-LogParsers
Love Open Source and this site? Check out how you can help us