There are no reviews yet. Be the first to send feedback to the community and the maintainers!
log4j-honeypot-flask
Internal network honeypot for detecting if an attacker or insider threat scans your network for log4j CVE-2021-44228auto-ossec
goatrider
GoatRider is a simple tool that will dynamically pull down Artillery Threat Intelligence Feeds, TOR, AlienVaults OTX, and the Alexa top 1 million websites and do a comparison to a hostname file or IP file.YaraMemoryScanner
Simple PowerShell script to enable process scanning with Yara.beacon-fronting
A simple command line program to help defender test their detections for network beacon patterns and domain frontingThreatHuntingJupyterNotebooks
IcedDecrypt
IcedID Decryption ToolGhidraRustDependenciesExtractor
Ghidra script for extracting embedded Rust crate dependency strings from a compiled Rust binaryJsonWrapper
A Myriad plugin for generating statically typed lossless wrappers around JToken given a schema.glyph-hunter
Python Flask web app that checks names for potential homoglyph characteristics and reports results in json formatdecloaker
A script that attempts to decloak symbiote activity, and some other LD_PRELOAD activitymining-pools
List of mining pool domain names for use in detection logicOTX-Microsoft-Logic-App
Microsoft Logic App for consuming Open Threat Exchange (OTX) data in Microsoft Sentinel / Log Analytics Workspaceborat-rat-plugin-emulators
.Net Libraries (DLLs) re-written from scratch that emulate the functionality of Borat RAT for defese testing purposesRPCFirewall-LogParsers
Love Open Source and this site? Check out how you can help us