2igosha / sunburst_dgaLinks
☆22Updated 4 years ago
Alternatives and similar repositories for sunburst_dga
Users that are interested in sunburst_dga are comparing it to the libraries listed below
Sorting:
- The mission of Black Lotus Labs is to leverage our network visibility to both help protect customers and keep the internet clean.☆12Updated 4 years ago
- Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…☆32Updated 9 years ago
- Repository for scripts and tips for "Yara Scan Service"☆20Updated 2 years ago
- Script to pull newly-registered domains and check for similarity against a provided word list.☆13Updated 5 years ago
- ☆12Updated 4 years ago
- Forensics triage tool relying on Volatility and Foremost☆26Updated last year
- A script to assist in processing forensic RAM captures for malware triage☆27Updated 4 years ago
- hassh-utils: Nmap NSE Script and Docker image for HASSH - the SSH client/server fingerprinting method (https://github.com/salesforce/hass…☆60Updated last year
- A list of IOCs applicable to PoshC2☆24Updated 5 years ago
- various slides and presentations I've worked on☆19Updated 7 months ago
- Presentation materials for talks I've given.☆20Updated 6 years ago
- ☆14Updated 7 years ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Updated 6 years ago
- isodump - ISO dump utility☆41Updated 6 years ago
- Notebooks created to attack and secure Active Directory environments☆27Updated 5 years ago
- Yara rules☆22Updated 2 years ago
- Crowdstrike Falcon Host script for iterating through instances to get alert and other relevant data☆13Updated 6 years ago
- The Multiplatform Linux Sandbox☆16Updated last year
- A Modular MWDB Utility to Collect Fresh Malware Samples☆34Updated 4 years ago
- s3eker is an extensible way to find open S3 buckets.☆17Updated 5 years ago
- Indicators of compromise relating to our report on APT10's targeting of global MSPs☆10Updated 8 years ago
- An extendable tool to extract and aggregate IoCs from threat feeds☆34Updated last year
- Gunslinger is used to hunt for Magecart sites using URLScan's API☆31Updated 3 years ago
- C# User Simulation☆33Updated 3 years ago
- Streaming Unexpected Network Byte Sequences with High Probability of Blue Screening or Otherwise Crashing Attacker Command-and-Control No…☆22Updated 6 years ago
- Python emulator for Excel XLM macros.☆18Updated 5 years ago
- Carving tool based in Radare2 & Yara☆16Updated 7 years ago
- DeployREMnux is a Python script that will deploy a cloud instance of the public REMnux distribution in the Amazon cloud (AWS).☆16Updated 5 years ago
- Proof of concept communications from C# via a web browser process☆21Updated 6 years ago
- Merge all Yara rules from official Yara github repository in one .yar file☆30Updated 7 years ago