Alternatives and similar repositories for IndicatorOfCanary:

Users that are interested in IndicatorOfCanary are comparing it to the libraries listed below

• Neo23x0 / god-mode-rules
  God Mode Detection Rules
  ☆134Updated 7 months ago
• CTI-Driven / LOLBins
  The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…
  ☆119Updated 11 months ago
• 0xAnalyst / Project-Lost
  Living Off Security Tools
  ☆45Updated 5 months ago
• cgosec / Blauhaunt
  A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…
  ☆167Updated last month
• LOLESXi-Project / LOLESXi
  LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…
  ☆121Updated 2 months ago
• krdmnbrk / AttackRuleMap
  Mapping of open-source detection rules and atomic tests.
  ☆159Updated 2 months ago
• LOTTunnels / LOTTunnels.github.io
  ☆89Updated 2 weeks ago
• reecdeep / segugio
  Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…
  ☆147Updated 6 months ago
• tsale / EDR-Telemetry-Website
  ☆74Updated last week
• synacktiv / captaincredz
  CaptainCredz is a modular and discreet password-spraying tool.
  ☆102Updated last month
• lawndoc / Respotter
  Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.
  ☆192Updated 2 months ago
• montysecurity / YaraMonitor
  Framework for Monitoring File Ingestion Source for Yara Matches
  ☆45Updated 3 weeks ago
• infosecn1nja / VeilTransfer
  VeilTransfer is a data exfiltration utility designed to test and enhance the detection capabilities. This tool simulates real-world data …
  ☆134Updated last month
• surajpkhetani / AutoSmuggle
  Utility to craft HTML or SVG smuggled files for Red Team engagements
  ☆241Updated last year
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆81Updated 11 months ago
• northsh / detection.studio
  Convert Sigma rules to SIEM queries, directly in your browser.
  ☆65Updated last week
• DataDog / HASH
  HASH (HTTP Agnostic Software Honeypot)
  ☆137Updated 11 months ago
• bartblaze / FARA
  Repository that contains a set of purposefully erroneous Yara rules.
  ☆50Updated last year
• C0axx / CanaryHunter
  Canary Hunter aims to be a quick PowerShell script to check for Common Canaries in various formats generated for free on canarytokens.org
  ☆119Updated 2 years ago
• SafeBreach-Labs / DoubleDrive
  A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files
  ☆123Updated 10 months ago
• Cyb3r-Monk / ACCD
  Active C&C Detector
  ☆153Updated last year
• sans-blue-team / DNS-Exfiltrate
  ☆24Updated 2 years ago
• huntresslabs / rogueapps
  When good OAuth apps go rogue. Documents observed OAuth application tradecraft
  ☆72Updated last week
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆78Updated 7 months ago
• grahamhelton / grahamhelton.github.io
  ☆40Updated 7 months ago
• AirbusProtect / AD-Canaries
  The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…
  ☆250Updated last year
• referefref / honeydet
  Signature based honeypot detector tool written in Golang
  ☆89Updated last week
• RoseSecurity / WolfPack
  WolfPack combines the capabilities of Terraform and Packer to streamline the deployment of red team redirectors on a large scale.
  ☆148Updated last week
• MorDavid / BloodHoundViewer
  Addon for BHCE
  ☆40Updated 2 weeks ago
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆32Updated 4 months ago