Neo23x0 / Rewind

Related projects ⓘ

Alternatives and complementary repositories for Rewind

• nccgroup / KilledProcessCanary
  A canary designed to minimize the impact from certain Ransomware actors
  ☆98Updated 3 years ago
• imp0rtp3 / Yobi
  Yara Based Detection Engine for web browsers
  ☆47Updated 3 years ago
• Neo23x0 / panopticon
  A YARA Rule Performance Measurement Tool
  ☆58Updated 8 months ago
• dsnezhkov / racketeer
  ☆68Updated 3 years ago
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆72Updated 2 years ago
• Neo23x0 / xorex
  XOR Key Extractor
  ☆48Updated 3 months ago
• matterpreter / Shhmon
  Neutering Sysmon via driver unload
  ☆222Updated 2 years ago
• Neo23x0 / Cyber-Search-Shortcuts
  Browser Shortcuts for Cyber Security Related Online Services
  ☆78Updated 3 years ago
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆95Updated last year
• darkoperator / vscode-sysmon
  Visual Studio Code Microsoft Sysinternal Sysmon configuration file extension.
  ☆51Updated last year
• rgeoghan / app-password-persistence
  Using Microsoft 365 App Passwords for persistence
  ☆23Updated 4 years ago
• ppt0 / easyhunting
  Get intelligence info (tags, mitre techniques, yara and more) and find similar malware in a fast and easy way
  ☆18Updated 2 years ago
• OTRF / API-To-Event
  A repo to document API functions mapped to security events across diverse platforms
  ☆74Updated 5 years ago
• cbasnett / Log-Extractor
  ☆27Updated 2 years ago
• IceMoonHSV / Sim
  C# User Simulation
  ☆33Updated 2 years ago
• slaughterjames / excelpeek
  ☆37Updated 2 years ago
• lawiet47 / autoresponder
  Carbon Black Response IR tool
  ☆53Updated 3 years ago
• mrcbax / honeyup
  An uploader honeypot designed to look like poor website security.
  ☆26Updated last month
• shabarkin / pointer
  Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.
  ☆65Updated 2 years ago
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆90Updated 2 years ago
• deadjakk / Reg1c1de
  Registry permission scanner written in C# for finding potential privesc avenues within registry
  ☆84Updated 3 years ago
• Silv3rHorn / evtx2json
  evtx2json extracts events of interest from event logs, dedups them, and exports them to json.
  ☆41Updated 3 years ago
• jeffjbowie / intelligence_gathering
  A collection of scripts for the purpose of gathering open source intelligence, to be presented at GrayHat, BSides Denver, and Information…
  ☆24Updated 3 years ago
• lp-db / lp-db
  Login Pages Database forms a knowledge base on login pages related to malicious activities (C2 panels, phishing kits...).
  ☆38Updated last year
• mkorman90 / sysmon-config-bypass-finder
  Detect possible sysmon logging bypasses given a specific configuration
  ☆107Updated 5 years ago
• Neo23x0 / YARA-Performance-Guidelines
  A guide on how to write fast and memory friendly YARA rules
  ☆126Updated last year
• cado-security / rip_raw
  Rip Raw is a small tool to analyse the memory of compromised Linux systems.
  ☆131Updated 2 years ago
• DidierStevens / AdHoc
  AdHoc solutions
  ☆48Updated last year
• W3ndige / aurora
  Malware similarity platform with modularity in mind.
  ☆76Updated 3 years ago