• Stars
    star
    5
  • Rank 2,861,937 (Top 57 %)
  • Language
    Jupyter Notebook
  • Created 3 months ago
  • Updated 2 months ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

More Repositories

1

log4j-honeypot-flask

Internal network honeypot for detecting if an attacker or insider threat scans your network for log4j CVE-2021-44228
Python
147
star
2

auto-ossec

Python
139
star
3

goatrider

GoatRider is a simple tool that will dynamically pull down Artillery Threat Intelligence Feeds, TOR, AlienVaults OTX, and the Alexa top 1 million websites and do a comparison to a hostname file or IP file.
Python
137
star
4

YaraMemoryScanner

Simple PowerShell script to enable process scanning with Yara.
PowerShell
87
star
5

beacon-fronting

A simple command line program to help defender test their detections for network beacon patterns and domain fronting
Go
65
star
6

ThreatHuntingJupyterNotebooks

Jupyter Notebook
58
star
7

BinaryDefense.FSharp.Analyzers

Security analyzers for the FSharp (F#) language
F#
37
star
8

IcedDecrypt

IcedID Decryption Tool
Python
27
star
9

GhidraRustDependenciesExtractor

Ghidra script for extracting embedded Rust crate dependency strings from a compiled Rust binary
Python
26
star
10

JsonWrapper

A Myriad plugin for generating statically typed lossless wrappers around JToken given a schema.
F#
15
star
11

glyph-hunter

Python Flask web app that checks names for potential homoglyph characteristics and reports results in json format
Python
3
star
12

HiddenTaskHunter

PowerShell
3
star
13

ARC-Labs-Hunting-Queries

3
star
14

decloaker

A script that attempts to decloak symbiote activity, and some other LD_PRELOAD activity
Shell
2
star
15

mining-pools

List of mining pool domain names for use in detection logic
2
star
16

OTX-Microsoft-Logic-App

Microsoft Logic App for consuming Open Threat Exchange (OTX) data in Microsoft Sentinel / Log Analytics Workspace
2
star
17

borat-rat-plugin-emulators

.Net Libraries (DLLs) re-written from scratch that emulate the functionality of Borat RAT for defese testing purposes
C#
2
star
18

RPCFirewall-LogParsers

1
star