Alternatives and similar repositories for Bluekeep-Detection-Rule

Users that are interested in Bluekeep-Detection-Rule are comparing it to the libraries listed below

• zom3y3 / ssdc
  ssdeep cluster analysis for malware files
  ☆31Updated 5 years ago
• johnbergbom / PeddleCheap
  Pcaps for PeddleCheap and implant communication + script for interpreting and decrypting pcaps.
  ☆15Updated 7 years ago
• alphaSeclab / malware-ioc-hash
  Collection of malware ioc hashes from blog posts. A Python script is provided to search through it.
  ☆17Updated 4 years ago
• mitre / gocat
  Simplified go-cat agent for caldera
  ☆10Updated last year
• StefanKelm / yara-rules
  Links to malware-related YARA rules
  ☆15Updated 2 years ago
• 0xrawsec / gene-rules
  ☆41Updated 2 years ago
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆31Updated 3 months ago
• nccgroup / yaml2yara
  Generate bulk YARA rules from YAML input
  ☆22Updated 5 years ago
• dtrizna / SysmonRNN
  All necessary code in order to feed Sysmon data into Recurrent Neural Network
  ☆17Updated 4 years ago
• bro / bro-osquery
  Bro integration with osquery
  ☆15Updated 2 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 9 years ago
• tianyulab / ThreatDetectionRules
  威胁检测规则集
  ☆15Updated 5 years ago
• sisoc-tokyo / mimikatz_detection
  ☆12Updated 7 years ago
• g0mxxm / shellcode_extractor_for_maldoc
  The code in this repository which function is to extract the shellcode from the maldoc.
  ☆10Updated last year
• DfirJos / CnC-detection
  Detecting PowerShell Empire, Metasploit Meterpreter and Cobalt Strike agents by payload size sequence analysis and host correlation
  ☆16Updated 6 years ago
• Cluster25 / detection
  Threat Detection Rules (Snort/Sigma/Yara)
  ☆13Updated last year
• Velocidex / go-yara
  Go bindings for YARA
  ☆14Updated last year
• ail-project / ail-yara-rules
  A set of YARA rules for the AIL framework to detect leak or information disclosure
  ☆38Updated 4 months ago
• intelforge / tmc
  Threat Mapping Catalogue
  ☆17Updated 3 years ago
• tasox / Epimitheus
  Epimitheus is a tool that uses graphical database Neo4j for Windows Events visualization.
  ☆19Updated 3 years ago
• thezdi / cvelist
  ☆17Updated 6 months ago
• robwillisinfo / Invoke-Decoder
  Invoke-Decoder – A PowerShell script to decode/deobfuscate malware samples
  ☆19Updated 4 years ago
• sisoc-tokyo / Real-timeDetectionAD_journal
  ☆24Updated 5 years ago
• fireeye / brocapi
  Bro PCAP Processing and Tagging API
  ☆28Updated 7 years ago
• karttoon / iocs
  IoC's, PCRE's, YARA's etc
  ☆24Updated 3 months ago
• threatrack / cti_report_collection
  Repository collecting and automagically processing public threat intelligence reports.
  ☆18Updated 5 years ago
• nccgroup / Royal_APT
  Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research
  ☆53Updated 7 years ago
• rtcrowley / Offensive-Netsh-Helper
  Maintain Windows Persistence with an evil Netshell Helper DLL
  ☆12Updated 6 years ago
• manning23 / ATTCK-technical-data
  ATT&CK技战术数据
  ☆16Updated 4 years ago
• audibleblink / bothan
  Is this IP a C2 server?
  ☆28Updated 5 years ago