StefanGrimminck / zgrab2-configurations

Related projects ⓘ

Alternatives and complementary repositories for zgrab2-configurations

• adulau / HHHash
  HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.
  ☆75Updated last year
• Te-k / pycrtsh
  Python 3 library to request https://crt.sh/
  ☆30Updated last year
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆63Updated last month
• markuskont / pikksilm
  Look into EDR events from network
  ☆23Updated 6 months ago
• PaloAltoNetworks / pyjarm
  pyJARM is a library for doing JARM fingerprinting using python
  ☆50Updated 3 years ago
• NVISOsecurity / nviso-cti
  ☆41Updated 7 months ago
• FoxIO-LLC / ja4tscan
  JA4TScan is an active TCP server fingerprinting tool.
  ☆55Updated 2 months ago
• BinaryDefense / beacon-fronting
  A simple command line program to help defender test their detections for network beacon patterns and domain fronting
  ☆65Updated 2 years ago
• cedowens / C2-JARM
  A list of JARM hashes for different ssl implementations used by some C2/red team tools.
  ☆135Updated last year
• packetsifter / packetsifterTool
  PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…
  ☆93Updated 3 years ago
• ninoseki / uzen
  Website crawler with YARA detection
  ☆88Updated last year
• ninoseki / iocingestor
  An extendable tool to extract and aggregate IoCs from threat feeds
  ☆32Updated 9 months ago
• righel / log4shell_nse
  nse script to inject jndi payloads
  ☆45Updated 2 years ago
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆57Updated 2 years ago
• hm-seclab / YAFRA
  YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
  ☆27Updated 2 years ago
• bonjourmalware / melody
  Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…
  ☆138Updated 3 years ago
• TobySalusky / cont3xt
  Cont3xt intends to centralize and simplify a structured approach to gathering contextual intelligence in support of technical investigati…
  ☆36Updated 7 months ago
• hdm / jarm-go
  A Go implementation of JARM
  ☆119Updated 2 years ago
• stacscan / stacs
  Static Token And Credential Scanner
  ☆95Updated last year
• 3c7 / infrastructure-tracking-schema
  ☆24Updated 2 years ago
• DomainTools / DomainCAT
  Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations
  ☆43Updated 3 years ago
• nccgroup / nlist
  An nmap script to produce target lists for use with various tools.
  ☆33Updated 3 years ago
• sebdraven / IOCmite
  Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert
  ☆37Updated 2 years ago
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆72Updated 2 years ago
• b3n-j4m1n / Red-Terroir
  Terraform resources for building HTTP, DNS, phishing, and mail server red team infrastructure
  ☆93Updated 5 years ago
• mandiant / goauditparser
  ☆43Updated last year
• shabarkin / pointer
  Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.
  ☆65Updated 2 years ago