Discover @Neo23x0 Open Source projects

Florian Roth (@Neo23x0)

Neo23x0

Stars
15,114
Global Rank 1,177 (Top 0.05 %)
Followers 5,280
Following 22
Registered over 11 years ago
Most used languages

Python
66.7 %

YARA 12.1 %

Shell
6.1 %

C++
3.0 %

Visual Basic 3.0 %

Go
3.0 %

Rust
3.0 %

C#
3.0 %
Location 🇩🇪 Germany
Country Total Rank 79
Country Ranking

YARA 1

Visual Basic 17

Python
26

Shell
46

C++
114

Rust
364

C#
519

Go
2,512

Loki

Loki - Simple IOC and YARA Scanner

signature-base

YARA signature and IOC database for my scanners and tools

yarGen

yarGen is a generator for YARA rules

auditd

Best Practice Auditd Configuration

Raccine

A Simple Ransomware Vaccine

munin

Online hash checker for Virustotal and other services

log4shell-detector

Detector for Log4Shell exploitation attempts

Fenrir

Simple Bash IOC Scanner

yarAnalyzer

Yara Rule Analyzer and Statistics

vti-dorks

Awesome VirusTotal Intelligence Search Queries

Fnord

Pattern Extractor for Obfuscated Code

BlueLedger

A list of my personal projects

DLLRunner

Smart DLL execution for malware analysis in sandbox systems

god-mode-rules

God Mode Detection Rules

YARA-Performance-Guidelines

A guide on how to write fast and memory friendly YARA rules

evt2sigma

Log Entry to Sigma Rule Converter

yaraQA

YARA rule analyzer to improve rule quality and performance

Cyber-Search-Shortcuts

Browser Shortcuts for Cyber Security Related Online Services

exotron

Sandbox feature upgrade with the help of wrapped samples

ImpHash-Generator

PE Import Hash Generator

Loki2

LOKI2 - Simple IOC and YARA Scanner

radiocarbon

Leak File Analyzer

Rewind

Immediate Virus Infection Counter Measures

panopticon

A YARA Rule Performance Measurement Tool

tiny-shells

All kinds of tiny shells

LOLSecIssues

Cybersecurity's lighter side: a collection of the most amusing misunderstandings and missteps from newcomers to offensive security tools. A repository where naiveté in infosec is met with humor.

ti-falsepositives

A collection of typical false positive indicators

webshell-intel

Scan web server for known webshell names and responses

xorex

XOR Key Extractor

Talks

Slides of my public talks

cyber-chef-recipes

Recipes for GCHQ's CyberChef Web App

sysmon-version-history

An Inofficial Sysmon Version History (Change Log)

SkeletonKeyScanner

Scanner for the SkeletonKey Malware

littlesnitch-log-exporter

LittleSnitch Log Statistics Exporter

prisma

Command Line STDOUT Colorer

ThreatResearch-Reporting-Guide

Offensive Research Guide to Help Defense Improve Detection

ReginScanner

Scanner for Regin Virtual Filesystems

YARA-Style-Guide

A specification and style guide for YARA rules

space-id

Invisible Watermarks with Space Characters in ASCII Files

neolog

Windows Syslog Command Line Client

narsil

Spy Agency Teasing

yara-uuid-generator

A tool that adds reproducible UUIDs to YARA rules

WPWatcher

Wordpress Watcher is a wrapper for WPScan that manages scans on multiple sites and reports by email

defensive-project-ideas

Ideas for projects for defensive research or blue teaming

agile-hacking

Collection of hacks that make use of the least available on victim systems

CredsSpreader

A tool to spread canary credentials in your organisation

language-thor

Syntax Theme for THOR APT Scanner log files

yara-type-selectors

YARA rules to certain types of files without using YARA modules to avoid the performance impact

PassTweaker

Tweaks password files to match modern password requirements

speedy

(Demo) - Only used to demonstrate a memory leak caused by Golang regexp

loki-cloud

A flexible and lightweight way to execute LOKI on end systems

imphash-go

Imphash Generator