Open-source endpoint detection engine for Windows and Linux using ETW, eBPF, Sigma, YARA, IOCs, and ECS NDJSON alerts.
☆307May 18, 2026Updated last week
Alternatives and similar repositories for rustinel
Users that are interested in rustinel are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Scripts to for ready-to-use Velociraptor instance deployment in Azure☆14Jun 27, 2023Updated 2 years ago
- Tools for attacking Computer Use Agents☆31Jan 16, 2026Updated 4 months ago
- Packet Monkey is a tool to filter and classify PCAPs using Wireshark filters☆11Feb 27, 2026Updated 2 months ago
- Detect drift. Defend cloud.☆37Feb 21, 2026Updated 3 months ago
- ☆206May 10, 2026Updated 2 weeks ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Repository for Ludus french templates☆24Mar 1, 2026Updated 2 months ago
- A script designed to test passwords against user accounts within an Active Directory environment, offering customizable Account Lockout T…☆17Jan 28, 2026Updated 3 months ago
- kunkillable is an LKM that makes userland processes unkillable.☆17Sep 26, 2020Updated 5 years ago
- Tools and scripts to deploy and manage OpenRelik instances☆16Mar 23, 2026Updated 2 months ago
- ☆81Feb 19, 2026Updated 3 months ago
- Bring Your Own Mitre Att&ck © Matrix !☆13Oct 19, 2023Updated 2 years ago
- pySigma Elasticsearch backend☆66May 19, 2026Updated last week
- An implementation of a Windows Event Collector server running on GNU/Linux.☆96Jan 27, 2026Updated 4 months ago
- ☆23Mar 12, 2025Updated last year
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- TTPMapper is an AI-driven threat intelligence parser that converts unstructured reports whether from web URLs or PDF files into structure…☆53Jun 21, 2025Updated 11 months ago
- Jupyter Notebooks for Cyber Threat Intelligence☆35Sep 14, 2023Updated 2 years ago
- IDT HOOK KiPageFault test Modified from: github.com/kanren3/x64-IDT-HOOK☆18May 2, 2020Updated 6 years ago
- DorkTerm is a terminal-themed web-based security tool designed to assist security researchers in performing Google Dork queries efficient…☆15Jan 25, 2026Updated 4 months ago
- A tool to dump informations about the caller of a function.☆14Oct 4, 2016Updated 9 years ago
- Convert Sigma rules to SIEM queries, directly in your browser.☆116May 17, 2026Updated last week
- My try to implement a virtual CPU in C☆19Nov 18, 2023Updated 2 years ago
- A little tool to filter the stranger strings from a binary so you can analyze the good ones☆54Sep 11, 2025Updated 8 months ago
- A curated list of awesome OSCP resources☆18Apr 15, 2020Updated 6 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Knowing which rule should trigger according to the redcannary test☆11Nov 23, 2024Updated last year
- Offensive Assembly code snippets.☆13Jul 12, 2023Updated 2 years ago
- vBrowser is a secure, containerized browser platform designed for covert web investigations. Originally created to support deep and dark …☆20Feb 24, 2026Updated 3 months ago
- collection of links related to using and improving windbg☆20Jun 17, 2018Updated 7 years ago
- Threat feeds designed to extract adversarial TTPs and IOCs, using: ✨AI✨☆72Updated this week
- Detection Rule License (DRL)☆21Dec 27, 2024Updated last year
- Quick ESXi Log Parser☆31Oct 20, 2025Updated 7 months ago
- ☆15Feb 5, 2021Updated 5 years ago
- A C project that generates usernames based on input lists and format you decide yourself☆11Jan 23, 2025Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Feb 6, 2025Updated last year
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆97May 28, 2023Updated 2 years ago
- Fast memory tree storage structure for PHP☆11Oct 28, 2015Updated 10 years ago
- Stealing signatures from pe files☆15Apr 1, 2025Updated last year
- sKaleQL is an opinionated template repository for managing, executing, and organizing Kusto Query Language (KQL) queries against Azure Lo…☆20May 20, 2025Updated last year
- Nakamoto is a 2 layer encryption tool to protect your data and your cyptocurrency☆16May 2, 2026Updated 3 weeks ago
- ☆203Updated this week