A Simple Ransomware Vaccine
☆974Nov 8, 2023Updated 2 years ago
Alternatives and similar repositories for Raccine
Users that are interested in Raccine are comparing it to the libraries listed below
Sorting:
- A toolset to make a system look as if it was the victim of an APT attack☆2,714Sep 23, 2025Updated 5 months ago
- Online hash checker for Virustotal and other services☆846Mar 21, 2025Updated 11 months ago
- Malwoverview is a rapid response tool used to gather intelligence information from VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malsh…☆3,633Mar 1, 2026Updated last week
- TrustedSec Sysinternals Sysmon Community Guide☆1,375Feb 10, 2026Updated 3 weeks ago
- A Powershell incident response framework☆1,639Nov 22, 2022Updated 3 years ago
- An Active Defense and EDR software to empower Blue Teams☆1,316Aug 10, 2023Updated 2 years ago
- Utilities for Sysmon☆1,575Sep 21, 2025Updated 5 months ago
- Loki - Simple IOC and YARA Scanner☆3,729Jan 12, 2026Updated last month
- Investigate malicious Windows logon by visualizing and analyzing Windows event log☆3,137Oct 19, 2025Updated 4 months ago
- Windows Events Attack Samples☆2,517Jan 24, 2023Updated 3 years ago
- Sysmon event simulation utility which can be used to simulate the attacks to generate the Sysmon Event logs for testing the EDR detection…☆864Jan 20, 2022Updated 4 years ago
- Sysmon EDR POC Build within Powershell to prove ability.☆223May 1, 2021Updated 4 years ago
- Digging Deeper....☆3,799Updated this week
- Re-play Security Events☆1,725Mar 20, 2024Updated last year
- Main Sigma Rule Repository☆10,156Mar 2, 2026Updated last week
- A repository of sysmon configuration modules☆2,987Aug 21, 2024Updated last year
- Automate the creation of a lab environment complete with security tooling and logging best practices☆4,909Jul 6, 2024Updated last year
- Detect Tactics, Techniques & Combat Threats☆2,268Jan 21, 2026Updated last month
- Automatically create YARA rules from malicious documents.☆211May 16, 2022Updated 3 years ago
- Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…☆2,314Oct 31, 2025Updated 4 months ago
- Open EDR public repository☆2,612Jan 13, 2024Updated 2 years ago
- Investigate suspicious activity by visualizing Sysmon's event log☆431Dec 22, 2023Updated 2 years ago
- Simple (relatively) things allowing you to dig a bit deeper than usual.☆3,485Feb 16, 2026Updated 3 weeks ago
- Defences against Cobalt Strike☆1,296Jul 14, 2022Updated 3 years ago
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆585May 5, 2024Updated last year
- ☆2,168Feb 21, 2023Updated 3 years ago
- Rapidly Search and Hunt through Windows Forensic Artefacts☆3,467Mar 2, 2026Updated last week
- Small and highly portable detection tests based on MITRE's ATT&CK.☆11,632Mar 2, 2026Updated last week
- The FLARE team's open-source tool to identify capabilities in executable files.☆5,862Updated this week
- Ransomware simulator written in Golang☆473Jun 30, 2022Updated 3 years ago
- YARA signature and IOC database for my scanners and tools☆2,880Feb 5, 2026Updated last month
- A post exploitation framework designed to operate covertly on heavily monitored environments☆2,168Sep 29, 2021Updated 4 years ago
- Sysmon configuration file template with default high-quality event tracing☆5,419Jul 3, 2024Updated last year
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,564Oct 31, 2025Updated 4 months ago
- A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more e…☆4,492Jan 12, 2026Updated last month
- Sparrow.ps1 was created by CISA's Cloud Forensics team to help detect possible compromised accounts and applications in the Azure/m365 en…☆1,428Dec 27, 2022Updated 3 years ago
- IntelOwl: manage your Threat Intelligence at scale☆4,481Updated this week
- Repository of YARA rules made by Trellix ATR Team☆625Mar 18, 2025Updated 11 months ago
- Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysi…☆1,303Jun 1, 2023Updated 2 years ago