Alternatives and similar repositories for IndicatorOfCanary:

Users that are interested in IndicatorOfCanary are comparing it to the libraries listed below

• Neo23x0 / god-mode-rules
  God Mode Detection Rules
  ☆134Updated 6 months ago
• cgosec / Blauhaunt
  A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…
  ☆167Updated last week
• krdmnbrk / AttackRuleMap
  Mapping of open-source detection rules and atomic tests.
  ☆126Updated last month
• 0xAnalyst / Project-Lost
  Living Off Security Tools
  ☆45Updated 4 months ago
• LOLESXi-Project / LOLESXi
  LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…
  ☆118Updated last month
• reecdeep / segugio
  Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…
  ☆147Updated 5 months ago
• tsale / EDR-Telemetry-Website
  ☆74Updated this week
• dahvidschloss / PILOT
  Ping-based Information Lookup and Outbound Transfer
  ☆74Updated 10 months ago
• AirbusProtect / AD-Canaries
  The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…
  ☆249Updated last year
• CTI-Driven / LOLBins
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆118Updated 10 months ago
• RoseSecurity / WolfPack
  WolfPack combines the capabilities of Terraform and Packer to streamline the deployment of red team redirectors on a large scale.
  ☆147Updated last month
• lawndoc / Respotter
  Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.
  ☆191Updated last month
• DataDog / HASH
  HASH (HTTP Agnostic Software Honeypot)
  ☆136Updated 10 months ago
• SafeBreach-Labs / DoubleDrive
  A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files
  ☆123Updated 9 months ago
• MalwareSupportGroup / PolyDrop
  A BYOSI (Bring-Your-Own-Script-Interpreter) Rapid Payload Deployment Toolkit
  ☆80Updated 6 months ago
• mlcsec / Graphpython
  Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit
  ☆144Updated 2 months ago
• surajpkhetani / AutoSmuggle
  Utility to craft HTML or SVG smuggled files for Red Team engagements
  ☆233Updated 11 months ago
• RootUp / SmuggleShield
  Protection against HTML smuggling attempts.
  ☆87Updated last week
• grahamhelton / grahamhelton.github.io
  ☆40Updated 6 months ago
• facebookincubator / ForgeArmory
  ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).
  ☆101Updated 5 months ago
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆76Updated 6 months ago
• trustedsec / The_Shelf
  Retired TrustedSec Capabilities
  ☆246Updated 3 months ago
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆81Updated 10 months ago
• nyxgeek / track_the_planet
  DEFCON 31 slide deck and video link
  ☆58Updated 8 months ago
• Cyb3r-Monk / ACCD
  Active C&C Detector
  ☆152Updated last year
• CCob / okta-terrify
  Okta Verify and Okta FastPass Abuse Tool
  ☆303Updated 5 months ago