SCS-Labs / TheWatchListLinks
Threat Feeds, Threat lists, and regular lists of known IP ranges and domains. It updates every 4 hours.
☆16Updated 4 years ago
Alternatives and similar repositories for TheWatchList
Users that are interested in TheWatchList are comparing it to the libraries listed below
Sorting:
- Pure Honeypots with an automated bash script☆20Updated 3 years ago
- USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is exec…☆20Updated 2 years ago
- ☆34Updated 2 years ago
- Notebooks created to attack and secure Active Directory environments☆27Updated 5 years ago
- A mini project to exfiltrate data via QR codes☆19Updated 3 weeks ago
- A collection of tools adversaries commonly use in an attack.☆14Updated 9 months ago
- ☆22Updated 2 years ago
- Method of finding interesting domains using keywords + JARMs☆13Updated 2 years ago
- Globally distributed honeypots and HoneyNets IOCs and file reversing☆16Updated last year
- Kibana app for RedELK☆17Updated 2 years ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆35Updated 3 years ago
- A Canary which fires when uninstalled☆34Updated 4 years ago
- Windows Security Logging☆43Updated 3 years ago
- Command-line tool to search for malware samples in various repositories☆11Updated 3 years ago
- Triaging Windows event logs based on SANS Poster☆39Updated 2 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- ☆43Updated last month
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆70Updated 3 years ago
- A dataset of phishing kits in the wild☆14Updated last year
- CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"☆50Updated 3 years ago
- Continuous kerberoast monitor☆45Updated 2 years ago
- F-Secure Lightweight Acqusition for Incident Response (FLAIR)☆17Updated 4 years ago
- Collection of generic YARA rules☆16Updated last week
- A CALDERA plugin☆25Updated 3 months ago
- Automatic detection engineering technical state compliance☆55Updated last year
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆60Updated 2 years ago
- Firebase Domain Front Code☆21Updated 4 years ago
- Placeholder for my detection repo and misc detection engineering content☆42Updated last year
- A script to assist in processing forensic RAM captures for malware triage☆27Updated 4 years ago
- just manipulatin these here tokens yes sir nothing weird☆22Updated 3 years ago