NybbleHub / Bluekeep-Detection-Rule
Bluekeep detection rule by using Apache Flink CEP (Complex Event Processing) Library and Markov Chain.
☆9Updated 5 years ago
Alternatives and similar repositories for Bluekeep-Detection-Rule:
Users that are interested in Bluekeep-Detection-Rule are comparing it to the libraries listed below
- Threat Mapping Catalogue☆17Updated 3 years ago
- ☆24Updated 5 years ago
- ☆25Updated 4 years ago
- ssdeep cluster analysis for malware files☆30Updated 4 years ago
- Collection of malware ioc hashes from blog posts. A Python script is provided to search through it.☆17Updated 4 years ago
- ☆40Updated 2 years ago
- Analytics for Accounting logs from Network devices☆17Updated 4 years ago
- Invoke-Decoder – A PowerShell script to decode/deobfuscate malware samples☆19Updated 4 years ago
- Generate JSON force-directed/ node graph data from MITRE's ATTACK framework and visualize it interactively☆22Updated last week
- Simplified go-cat agent for caldera☆10Updated last year
- C# code for Transferring Backdoor Payloads by IPv6 Address (AAAA) records and DNS Traffic also Bypassing Anti-viruses☆31Updated last year
- Repository collecting and automagically processing public threat intelligence reports.☆18Updated 4 years ago
- ATT&CK技战术数据☆16Updated 4 years ago
- 威胁检测规则集☆15Updated 5 years ago
- All necessary code in order to feed Sysmon data into Recurrent Neural Network☆17Updated 4 years ago
- Detecting PowerShell Empire, Metasploit Meterpreter and Cobalt Strike agents by payload size sequence analysis and host correlation☆16Updated 6 years ago
- Generate bulk YARA rules from YAML input☆22Updated 5 years ago
- ☆12Updated 7 years ago
- Remove individual lines from Windows Event Viewer Log (EVT) files☆44Updated 4 years ago
- 获取系统KB补丁对于的MS号☆24Updated 5 years ago
- HTTP Protocol Stack CVE-2021-31166☆13Updated 6 months ago
- IoC's, PCRE's, YARA's etc☆24Updated last month
- Cobalt Strike Aggressor Scripts are custom penetration testing and red teaming scripts for use with Cobalt Strike.☆8Updated 6 years ago
- Python implementation of RSA reverse shell.☆11Updated 8 years ago
- alertflex controller☆10Updated last month
- Frontend to import Nmap Scan in ES, and frontend to make search☆10Updated 10 years ago
- Repository of Information sharing on threats and indicators☆12Updated 5 years ago
- Links to malware-related YARA rules☆15Updated 2 years ago
- A dsniff project using bro☆10Updated 9 years ago
- Maintain Windows Persistence with an evil Netshell Helper DLL☆12Updated 6 years ago