Alternatives and similar repositories for Bluekeep-Detection-Rule

Users that are interested in Bluekeep-Detection-Rule are comparing it to the libraries listed below

• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆30Updated 2 months ago
• dtrizna / SysmonRNN
  All necessary code in order to feed Sysmon data into Recurrent Neural Network
  ☆17Updated 4 years ago
• johnbergbom / PeddleCheap
  Pcaps for PeddleCheap and implant communication + script for interpreting and decrypting pcaps.
  ☆15Updated 7 years ago
• alphaSeclab / malware-ioc-hash
  Collection of malware ioc hashes from blog posts. A Python script is provided to search through it.
  ☆17Updated 4 years ago
• sisoc-tokyo / Real-timeDetectionAD_journal
  ☆24Updated 5 years ago
• mitre / gocat
  Simplified go-cat agent for caldera
  ☆10Updated last year
• DfirJos / CnC-detection
  Detecting PowerShell Empire, Metasploit Meterpreter and Cobalt Strike agents by payload size sequence analysis and host correlation
  ☆16Updated 6 years ago
• ail-project / ail-yara-rules
  A set of YARA rules for the AIL framework to detect leak or information disclosure
  ☆38Updated 4 months ago
• Adrninistrator / java-behavior-control
  Monitor and prevent unexpected behavior of Java programs.
  ☆14Updated 3 years ago
• tianyulab / ThreatDetectionRules
  威胁检测规则集
  ☆15Updated 5 years ago
• tasox / Epimitheus
  Epimitheus is a tool that uses graphical database Neo4j for Windows Events visualization.
  ☆19Updated 3 years ago
• DissectMalware / npp-langs-4-sec
  Notepad++ Syntax Highlighting for Languages Used by Cyber Security Professionals
  ☆14Updated 5 years ago
• zom3y3 / ssdc
  ssdeep cluster analysis for malware files
  ☆30Updated 5 years ago
• StefanKelm / yara-rules
  Links to malware-related YARA rules
  ☆15Updated 2 years ago
• 001SPARTaN / SaltedCaramel
  Apfell implant written in C#.
  ☆8Updated 4 years ago
• mhaskar / Octopus-C2-RedTeam-infrastructure-automation
  ☆20Updated 5 years ago
• sisoc-tokyo / mimikatz_detection
  ☆12Updated 7 years ago
• audibleblink / bothan
  Is this IP a C2 server?
  ☆28Updated 5 years ago
• diljith369 / shadow
  Plaform independent reverse shell over https
  ☆11Updated 5 years ago
• v1ado / HIPS_LIPS
  Community maintained list of most popular HIPS service and process names on a Windows Platform.
  ☆43Updated 2 years ago
• 0xrawsec / gene-rules
  ☆41Updated 2 years ago
• rtcrowley / Offensive-Netsh-Helper
  Maintain Windows Persistence with an evil Netshell Helper DLL
  ☆12Updated 6 years ago
• markuskont / pikksilm
  Look into EDR events from network
  ☆23Updated last month
• g0mxxm / shellcode_extractor_for_maldoc
  The code in this repository which function is to extract the shellcode from the maldoc.
  ☆10Updated last year
• NexusFuzzy / NanoDump
  Tool to decrypt the configuration of NanoCore and dump all used plugins
  ☆10Updated 4 years ago
• corelight / CVE-2021-31166
  HTTP Protocol Stack CVE-2021-31166
  ☆13Updated 7 months ago
• breakid / RedReaper
  This tool is designed to simplify and automate the extraction and organization of useful data from Cobalt Strike logs.
  ☆18Updated 6 years ago
• needle-wang / jweevely
  a exec jsp shell, simply like weevely php C/S shell.
  ☆14Updated 2 years ago
• jvdroit / Suricata-rules
  ☆9Updated 8 years ago
• rasta-mouse / AsyncSockets
  Example of async client/server sockets in .NET 5
  ☆17Updated 3 years ago