0xrawsec/gene-rules external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

0xrawsec/gene-rules

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/0xrawsec/gene-rules)

Close

0xrawsec / gene-rulesView on GitHubMore

• External links
• Readme badge

☆42Sep 16, 2022Updated 3 years ago

Alternatives and similar repositories for gene-rules

Users that are interested in gene-rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• 0xrawsec / gene

  View on GitHub
  Signature engine for all your logs
  ☆173Nov 13, 2023Updated 2 years ago
• kidcrash22 / Sysmon-Threat-Intel

  View on GitHub
  ☆13Feb 6, 2018Updated 8 years ago
• kunai-project / sandbox

  View on GitHub
  Sandbox samples and monitor them with kunai
  ☆29Mar 3, 2026Updated 3 weeks ago
• airbus-cert / PSTrace

  View on GitHub
  Trace ScriptBlock execution for powershell v2
  ☆40Jan 14, 2020Updated 6 years ago
• zom3y3 / ssdc

  View on GitHub
  ssdeep cluster analysis for malware files
  ☆31Jun 5, 2020Updated 5 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• 0xrawsec / whids

  View on GitHub
  Open Source EDR for Windows
  ☆1,296Feb 25, 2023Updated 3 years ago
• tom8941 / MISP-IOC-Validator

  View on GitHub
  Validate IOC from MISP ; Export results and iocs to SIEM and sensors using syslog and CEF format
  ☆14Sep 13, 2016Updated 9 years ago
• frack113 / sigma_redcanaryco

  View on GitHub
  Knowing which rule should trigger according to the redcannary test
  ☆11Nov 23, 2024Updated last year
• swisscom / splunk-addon-powershell

  View on GitHub
  Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.
  ☆17Feb 1, 2021Updated 5 years ago
• 0xrawsec / golang-evtx

  View on GitHub
  ☆171Nov 11, 2022Updated 3 years ago
• PoorBillionaire / Windows-Prefetch-Carver

  View on GitHub
  Carve Windows Prefetch files from arbitrary binary data
  ☆16Jun 11, 2017Updated 8 years ago
• CERT-Bund / misp-warninglists-analyzer

  View on GitHub
  Checks observables/ioc in TheHive/Cortex against the MISP warningslists
  ☆14Dec 27, 2017Updated 8 years ago
• 0xrawsec / golang-utils

  View on GitHub
  Utility Library
  ☆20Feb 24, 2023Updated 3 years ago
• hashlookup / private-search-set

  View on GitHub
  Private Search Set (PSS) is an extension to standard Bloom filter or a standalone hash file to describe and share private set.
  ☆16Jan 10, 2025Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• MISP / misp-packer

  View on GitHub
  Build Automated Machine Images for MISP
  ☆29Jun 9, 2023Updated 2 years ago
• jeFF0Falltrades / IoCs

  View on GitHub
  A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo
  ☆29Jun 11, 2020Updated 5 years ago
• DerekKing / splunk_dns_analytics

  View on GitHub
  Splunk Searches and Dashboards for DNS Threat Hunting
  ☆10Mar 5, 2018Updated 8 years ago
• MatthewClarkMay / fTriage

  View on GitHub
  Automating forensic data extraction, reduction, and overall triage of cold disk and memory images.
  ☆21Mar 12, 2019Updated 7 years ago
• bro / bro-osquery

  View on GitHub
  Bro integration with osquery
  ☆15Mar 24, 2023Updated 3 years ago
• codeyourweb / irma

  View on GitHub
  enpoint detection / live analysis & sandbox host / signatures quality test
  ☆44Apr 22, 2021Updated 4 years ago
• 3c7 / infrastructure-tracking-schema

  View on GitHub
  ☆24Sep 28, 2022Updated 3 years ago
• cudeso / dfir-iris-misp-timesketch

  View on GitHub
  Scripts to integrate DFIR-IRIS, MISP and TimeSketch
  ☆36Feb 2, 2022Updated 4 years ago
• THIBER-ORG / userline

  View on GitHub
  Query and report user logons relations from MS Windows Security Events
  ☆243Aug 9, 2018Updated 7 years ago
• NordVPN Special Discount Offer • Ad
  Save on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
• JPCERTCC / SysmonSearch

  View on GitHub
  Investigate suspicious activity by visualizing Sysmon's event log
  ☆430Dec 22, 2023Updated 2 years ago
• sisoc-tokyo / mimikatz_detection

  View on GitHub
  ☆12Mar 24, 2018Updated 8 years ago
• corelight / log-add-http-post-bodies

  View on GitHub
  Add POST body excerpt to Bro's HTTP log
  ☆14Dec 10, 2025Updated 3 months ago
• PidgeyL / MISP-Extractor

  View on GitHub
  Extract information from MISP via the API
  ☆16Jul 18, 2016Updated 9 years ago
• mgreen27 / Invoke-LiveResponse

  View on GitHub
  Invoke-LiveResponse
  ☆150Feb 22, 2022Updated 4 years ago
• hashlookup / hashlookup-gui

  View on GitHub
  Provides a multi-platform Graphical User Interface for hashlookup
  ☆12Jul 12, 2024Updated last year
• MBCProject / mbc-stix2

  View on GitHub
  MBC v2.x expressed in STIX 2.1 JSON
  ☆16Oct 3, 2023Updated 2 years ago
• telsy-cyberops / research

  View on GitHub
  Telsy CTI Research Team
  ☆57Dec 15, 2020Updated 5 years ago
• markuskont / pikksilm

  View on GitHub
  Look into EDR events from network
  ☆25Nov 20, 2025Updated 4 months ago
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• proferosec / Threat-Intelligence

  View on GitHub
  A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.
  ☆10Sep 17, 2019Updated 6 years ago
• sk4la / volatility3-docker

  View on GitHub
  Volatility, on Docker 🐳
  ☆41Nov 20, 2025Updated 4 months ago
• murchisd / splunk_pstree_app

  View on GitHub
  Custom Splunk search command to reconstruct a pstree from Sysmon process creation events (EventCode 1)
  ☆24Mar 3, 2023Updated 3 years ago
• DBHeise / ShowSheets

  View on GitHub
  A Simple CLI App to mark all EXCEL sheets visible (i.e. sets "Very Hidden" and "Hidden" to "Visible")
  ☆11Apr 16, 2020Updated 5 years ago
• ion-storm / sysmon-edr

  View on GitHub
  Sysmon EDR POC Build within Powershell to prove ability.
  ☆223May 1, 2021Updated 4 years ago
• jpalanco / klara-docker-compose

  View on GitHub
  Klara docker compose
  ☆11May 19, 2020Updated 5 years ago
• adulau / misp-osint-collection

  View on GitHub
  Collection of best practices to add OSINT into MISP and/or MISP communities
  ☆65Sep 29, 2023Updated 2 years ago