0xrawsec / geneLinks
Signature engine for all your logs
☆171Updated last year
Alternatives and similar repositories for gene
Users that are interested in gene are comparing it to the libraries listed below
Sorting:
- SysmonX - An Augmented Drop-In Replacement of Sysmon☆215Updated 6 years ago
- simple YARA-based IOC scanner☆169Updated last month
- A library for fast parse & import of Windows Eventlogs into Elasticsearch.☆85Updated 3 months ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆106Updated 4 months ago
- Research indicators and detection rules☆66Updated 2 years ago
- ☆165Updated 4 years ago
- Random hunting ordiented yara rules☆97Updated 2 years ago
- A repository that maps API calls to Sysmon Event ID's.☆122Updated 2 years ago
- An Inofficial Sysmon Version History (Change Log)☆33Updated 4 years ago
- YARA rule analyzer to improve rule quality and performance☆103Updated 5 months ago
- Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules☆50Updated 2 years ago
- ☆128Updated 8 months ago
- Golang Parser for Microsoft Event Logs☆105Updated 3 months ago
- A VBA parser and emulation engine to analyze malicious macros.☆96Updated last month
- S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator☆87Updated 2 years ago
- Links to malware-related YARA rules☆15Updated 3 years ago
- A CALDERA plugin☆77Updated last month
- ☆41Updated 3 years ago
- Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets☆140Updated 4 years ago
- Proofpoint - Emerging Threats - Threat Research tools + publicly shared intel and documentation☆79Updated 3 weeks ago
- Anything Sysmon related from the MSTIC R&D team☆156Updated last year
- Automatically create YARA rules from malicious documents.☆212Updated 3 years ago
- Sysmon EDR POC Build within Powershell to prove ability.☆226Updated 4 years ago
- ☆116Updated last year
- c2 traffic☆190Updated 2 years ago
- Sigma Detection Rule Repository☆89Updated 5 years ago
- Repository containing IOCs, CSV and MISP JSON from our blogs☆81Updated 4 years ago
- A list of JARM hashes for different ssl implementations used by some C2/red team tools.☆142Updated 2 years ago
- ☆53Updated 6 years ago
- Blueteam operational triage registry hunting/forensic tool.☆149Updated 3 weeks ago