Rust Windows EDR (user-mode, no driver): ETW → Sysmon-style normalization → Sigma/Yara/IOC detection → ECS NDJSON alerts.
☆101Mar 4, 2026Updated last month
Alternatives and similar repositories for rustinel
Users that are interested in rustinel are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Scripts to for ready-to-use Velociraptor instance deployment in Azure☆14Jun 27, 2023Updated 2 years ago
- Packet Monkey is a tool to filter and classify PCAPs using Wireshark filters☆11Feb 27, 2026Updated last month
- The GDPR-compliant Privacy Policy template/sample provided at https://gdpr.eu, adapted into markdown format.☆13May 25, 2021Updated 4 years ago
- kunkillable is an LKM that makes userland processes unkillable.☆17Sep 26, 2020Updated 5 years ago
- Tools and scripts to deploy and manage OpenRelik instances☆16Mar 23, 2026Updated 3 weeks ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- pySigma Elasticsearch backend☆65Mar 30, 2026Updated 2 weeks ago
- An implementation of a Windows Event Collector server running on GNU/Linux.☆95Jan 27, 2026Updated 2 months ago
- TTPMapper is an AI-driven threat intelligence parser that converts unstructured reports whether from web URLs or PDF files into structure…☆52Jun 21, 2025Updated 9 months ago
- DorkTerm is a terminal-themed web-based security tool designed to assist security researchers in performing Google Dork queries efficient…☆15Jan 25, 2026Updated 2 months ago
- ☆183Apr 24, 2025Updated 11 months ago
- ☆15May 8, 2023Updated 2 years ago
- Knowing which rule should trigger according to the redcannary test☆11Nov 23, 2024Updated last year
- Threat feeds designed to extract adversarial TTPs and IOCs, using: ✨AI✨☆69Apr 5, 2026Updated last week
- Detection Rule License (DRL)☆21Dec 27, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Quick ESXi Log Parser☆31Oct 20, 2025Updated 5 months ago
- Rebuild of portspoof in GO with additional features.☆30Apr 7, 2026Updated last week
- A C project that generates usernames based on input lists and format you decide yourself☆11Jan 23, 2025Updated last year
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Feb 6, 2025Updated last year
- ☆22May 1, 2025Updated 11 months ago
- A Rust library for parsing and evaluating Sigma rules☆21Nov 26, 2025Updated 4 months ago
- Script to parse Process Monitor XML log file, and give you a summary report.☆23May 4, 2016Updated 9 years ago
- MCP to help Defenders Detection Engineer Harder and Smarter☆382Apr 7, 2026Updated last week
- sKaleQL is an opinionated template repository for managing, executing, and organizing Kusto Query Language (KQL) queries against Azure Lo…☆19May 20, 2025Updated 10 months ago
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Nakamoto is a 2 layer encryption tool to protect your data and your cyptocurrency☆15Updated this week
- The home of the SDDLMaker☆29Jan 13, 2025Updated last year
- QRadar AQL backend for converting Sigma rules to QRadar AQL queries☆14Sep 18, 2025Updated 6 months ago
- A Security Operations playbook to assist blue teamers from day-to-day tasks to Digital Forensics and Incident Response (DFIR) activities.☆22Apr 7, 2026Updated last week
- Blogseries on DevOps☆13Oct 19, 2023Updated 2 years ago
- ☆16Feb 22, 2026Updated last month
- OSSEM Data Dictionaries☆65Jan 22, 2025Updated last year
- ☆44Nov 28, 2025Updated 4 months ago
- This tool aims at parsing Microsoft Protection logs to provide relevant data to forensic analysts during incident responses.☆21Sep 30, 2022Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Search an entire directory of .eml email files for a word or phrase... in over 100 languages.☆12Feb 28, 2023Updated 3 years ago
- A CLI tool for running AI agents inside microVM sandboxes☆35Mar 20, 2026Updated 3 weeks ago
- Validates Sigma rules using the JSON schema☆22Mar 18, 2024Updated 2 years ago
- Examples of OpenPLC IEC 61131-3 Editor with CONTROLLINO☆21Dec 6, 2024Updated last year
- A framework and taxonomy for identifying, classifying, and reasoning about detection logic bugs in SIEM, EDR, and XDR rules, with concret…☆48Mar 5, 2026Updated last month
- ☆12Sep 2, 2016Updated 9 years ago
- Firebase Domain Front Code☆21May 4, 2021Updated 4 years ago