Neo23x0 / Loki
Loki - Simple IOC and YARA Scanner
☆3,502Updated 4 months ago
Alternatives and similar repositories for Loki:
Users that are interested in Loki are comparing it to the libraries listed below
- A curated list of awesome YARA rules, tools, and people.☆3,739Updated this week
- YARA signature and IOC database for my scanners and tools☆2,582Updated this week
- Repository of yara rules☆4,328Updated 11 months ago
- yarGen is a generator for YARA rules☆1,621Updated 9 months ago
- Investigate malicious Windows logon by visualizing and analyzing Windows event log☆2,866Updated 9 months ago
- A toolset to make a system look as if it was the victim of an APT attack☆2,537Updated last year
- Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Po…☆3,142Updated 2 months ago
- FakeNet-NG - Next Generation Dynamic Network Analysis Tool☆1,878Updated 2 months ago
- Digging Deeper....☆3,171Updated this week
- Automated Adversary Emulation Platform☆5,979Updated last week
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆2,510Updated 8 months ago
- ☆2,256Updated last year
- The pattern matching swiss knife☆8,650Updated this week
- Automate the creation of a lab environment complete with security tooling and logging best practices☆4,716Updated 8 months ago
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,468Updated 3 weeks ago
- Main Sigma Rule Repository☆8,850Updated last week
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,152Updated last year
- Wiki to collect Red Team infrastructure hardening resources☆4,236Updated 11 months ago
- Indicators of Compromises (IOC) of our various investigations☆1,745Updated last week
- Simple Bash IOC Scanner☆725Updated 3 years ago
- An informational repo about hunting for adversaries in your IT environment.☆1,761Updated 3 years ago
- Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mand…☆7,135Updated 6 months ago
- Interesting APT Report Collection And Some Special IOC☆2,523Updated last week
- Your Everyday Threat Intelligence☆1,835Updated last week
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆4,627Updated 4 years ago
- Please no pull requests for this repository. Thanks!☆2,165Updated 2 weeks ago
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆5,728Updated 2 weeks ago
- Malware Configuration And Payload Extraction☆2,279Updated this week
- Small and highly portable detection tests based on MITRE's ATT&CK.☆10,359Updated last week
- An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.☆1,844Updated last year