Suricata rules to detect Winnti communication
☆16Mar 5, 2018Updated 8 years ago
Alternatives and similar repositories for winnti-suricata-lua
Users that are interested in winnti-suricata-lua are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Network detector for Winnti malware☆21Mar 6, 2018Updated 8 years ago
- A Yara Lua output script for Suricata☆20Apr 7, 2019Updated 7 years ago
- Nmap Script to scan for Winnti infections☆71May 22, 2018Updated 8 years ago
- Repository of Volatility3 plugins☆22Mar 22, 2023Updated 3 years ago
- ☆10Sep 11, 2021Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Please see other maintained fork:☆17Dec 4, 2025Updated 5 months ago
- The report of a supervised classifier to detect malware in TLS traffic☆21Oct 21, 2019Updated 6 years ago
- ☆27Mar 2, 2022Updated 4 years ago
- server for indexing and querying passive DNS observations☆49Jan 12, 2026Updated 4 months ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Sep 17, 2019Updated 6 years ago
- Go reverse shell for Win/Linux/OSX☆17May 15, 2019Updated 7 years ago
- Binarly SDK v1☆14Dec 18, 2016Updated 9 years ago
- Reviews and tests of security products☆17Dec 28, 2024Updated last year
- Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack☆13Apr 18, 2020Updated 6 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- YARA Rule Strings Statistics Calculator and Malware Research Helper☆14Jul 24, 2021Updated 4 years ago
- simple YARA-based IOC scanner☆177Mar 17, 2026Updated 2 months ago
- ☆15Feb 12, 2023Updated 3 years ago
- ☆12Jan 28, 2020Updated 6 years ago
- Check Sigma rules for easy-to-bypass whitelists to make them more robust (https://github.com/SigmaHQ/sigma)☆16Feb 1, 2021Updated 5 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆25Mar 27, 2017Updated 9 years ago
- Create Suricata and Snort DNS signatures given a single domain or list of domains in a file.☆18Nov 13, 2017Updated 8 years ago
- PE file format reader in JavaScript☆26Apr 10, 2019Updated 7 years ago
- ☆23Aug 1, 2020Updated 5 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- tinyCA2☆17Aug 29, 2015Updated 10 years ago
- BinSequencer is a script designed to find a common pattern of bytes within a set of samples and generate a YARA rule from the identified…☆79Jan 2, 2022Updated 4 years ago
- ☆53May 21, 2018Updated 8 years ago
- ☆74Feb 17, 2022Updated 4 years ago
- ☆50Jan 13, 2020Updated 6 years ago
- A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics☆88Oct 6, 2017Updated 8 years ago
- Trace ScriptBlock execution for powershell v2☆40Jan 14, 2020Updated 6 years ago
- An Elasticsearch QUEry Language☆58Jul 3, 2017Updated 8 years ago
- ☆12Apr 23, 2020Updated 6 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- Mikrotik's Winbox in a docker container accessible via noVNC through a web browser.☆13May 12, 2025Updated last year
- ☆17Nov 13, 2024Updated last year
- Mass Suricata rules creator, from a list of domain☆14Sep 14, 2018Updated 7 years ago
- mod to myaut2exe decompiler☆20Jul 28, 2017Updated 8 years ago
- A PowerShell module for creating and removing Loopback Network Adapters on Windows using Device Conslole (DevCon.exe)☆15Feb 26, 2021Updated 5 years ago
- A YARA Rule Performance Measurement Tool☆63Feb 26, 2024Updated 2 years ago
- Golang port of pefile☆25Jul 17, 2017Updated 8 years ago