0xrawsec / geneLinks
Signature engine for all your logs
☆171Updated last year
Alternatives and similar repositories for gene
Users that are interested in gene are comparing it to the libraries listed below
Sorting:
- SysmonX - An Augmented Drop-In Replacement of Sysmon☆215Updated 5 years ago
- A library for fast parse & import of Windows Eventlogs into Elasticsearch.☆85Updated last month
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆106Updated 2 months ago
- simple YARA-based IOC scanner☆169Updated this week
- Golang Parser for Microsoft Event Logs☆104Updated last month
- Links to malware-related YARA rules☆15Updated 2 years ago
- A repository that maps API calls to Sysmon Event ID's.☆122Updated 2 years ago
- Random hunting ordiented yara rules☆97Updated 2 years ago
- An Inofficial Sysmon Version History (Change Log)☆33Updated 4 years ago
- S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator☆87Updated 2 years ago
- Open Dataset of Cobalt Strike Beacon metadata (2018-2022)☆125Updated 3 years ago
- ☆164Updated 4 years ago
- ☆41Updated 2 years ago
- Sysmon EDR POC Build within Powershell to prove ability.☆226Updated 4 years ago
- Research indicators and detection rules☆67Updated last year
- Sigma rules from Joe Security☆217Updated 8 months ago
- c2 traffic☆189Updated 2 years ago
- YARA rule analyzer to improve rule quality and performance☆102Updated 3 months ago
- Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules☆50Updated last year
- attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage☆113Updated 2 years ago
- A VBA parser and emulation engine to analyze malicious macros.☆96Updated last week
- Automatically create YARA rules from malicious documents.☆211Updated 3 years ago
- Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets☆139Updated 4 years ago
- A CALDERA plugin☆77Updated last week
- Blueteam operational triage registry hunting/forensic tool.☆148Updated 2 years ago
- Anything Sysmon related from the MSTIC R&D team☆154Updated last year
- Mindmaps for threat hunting - work in progress.☆150Updated 3 years ago
- Sigma Detection Rule Repository☆89Updated 5 years ago
- Automatic YARA rule generation for Malpedia☆161Updated 2 years ago
- Tracking APT IOCs☆25Updated 4 years ago