0xrawsec / geneLinks
Signature engine for all your logs
☆170Updated last year
Alternatives and similar repositories for gene
Users that are interested in gene are comparing it to the libraries listed below
Sorting:
- SysmonX - An Augmented Drop-In Replacement of Sysmon☆215Updated 5 years ago
- YARA rule analyzer to improve rule quality and performance☆101Updated last month
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆104Updated 2 weeks ago
- Sysmon EDR POC Build within Powershell to prove ability.☆224Updated 4 years ago
- c2 traffic☆188Updated 2 years ago
- ☆164Updated 4 years ago
- simple YARA-based IOC scanner☆169Updated 3 months ago
- A repository that maps API calls to Sysmon Event ID's.☆120Updated 2 years ago
- Blueteam operational triage registry hunting/forensic tool.☆145Updated 2 years ago
- Research indicators and detection rules☆66Updated last year
- A guide on how to write fast and memory friendly YARA rules☆143Updated 3 months ago
- A VBA parser and emulation engine to analyze malicious macros.☆96Updated last week
- Random hunting ordiented yara rules☆96Updated 2 years ago
- S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator☆86Updated 2 years ago
- Log newly created WMI consumers and processes to the Windows Application event log☆124Updated 7 years ago
- Sigma Detection Rule Repository☆88Updated 4 years ago
- Repository containing IOCs, CSV and MISP JSON from our blogs☆81Updated 3 years ago
- A repo to document API functions mapped to security events across diverse platforms☆75Updated 5 years ago
- Anything Sysmon related from the MSTIC R&D team☆153Updated 11 months ago
- Automatic YARA rule generation for Malpedia☆160Updated 2 years ago
- A library for fast parse & import of Windows Eventlogs into Elasticsearch.☆85Updated 3 weeks ago
- ☆69Updated 3 months ago
- A lightweight tool to load Windows Event Log evtx files into Elasticsearch.☆117Updated 4 years ago
- ☆130Updated last year
- An Inofficial Sysmon Version History (Change Log)☆33Updated 4 years ago
- Invoke-LiveResponse☆148Updated 3 years ago
- ☆127Updated 3 months ago
- ATT&CK Remote Threat Hunting Incident Response☆200Updated 5 months ago
- Cobalt Strike Beacon configuration extractor and parser.☆152Updated 3 years ago
- Golang Parser for Microsoft Event Logs☆102Updated 4 months ago