Alternatives and similar repositories for WhiteBeam

Users that are interested in WhiteBeam are comparing it to the libraries listed below

• ail-project / ail-yara-rules
  A set of YARA rules for the AIL framework to detect leak or information disclosure
  ☆38Updated 6 months ago
• avast / yari
  YARI is an interactive debugger for YARA Language.
  ☆88Updated last month
• epi052 / rustdsplit
  At some point, I learned about a method to perform a binary search on a file in order to identify its AV signature and change it to bypas…
  ☆35Updated 5 years ago
• DidierStevens / FalsePositives
  Tools that trigger False Positive AV alerts
  ☆50Updated 7 months ago
• BinaryDefense / beacon-fronting
  A simple command line program to help defender test their detections for network beacon patterns and domain fronting
  ☆69Updated 3 years ago
• adulau / HHHash
  HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.
  ☆77Updated last year
• lp-db / lp-db
  Login Pages Database forms a knowledge base on login pages related to malicious activities (C2 panels, phishing kits...).
  ☆39Updated 2 years ago
• jacopodl / Pulsar
  Data exfiltration and covert communication tool
  ☆39Updated 2 years ago
• WithSecureLabs / tau-engine
  A document tagging library
  ☆30Updated 4 months ago
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆49Updated 3 years ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 3 years ago
• Lifars / gargamel
  A forensic evidence acquirer
  ☆86Updated 4 years ago
• b3n-j4m1n / Red-Terroir
  Terraform resources for building HTTP, DNS, phishing, and mail server red team infrastructure
  ☆95Updated 6 years ago
• Yara-Rules / YaraRET
  Carving tool based in Radare2 & Yara
  ☆16Updated 6 years ago
• praetorian-inc / slack-c2bot
  Slack C2bot that executes commands and returns the output.
  ☆46Updated 2 years ago
• sandflysecurity / sandfly-processdecloak
  Sandfly Linux Stealth Rootkit Decloaking Utility
  ☆101Updated 2 years ago
• visma-prodsec / columbo
  Columbo is a computer forensic analysis tool used to simplify and identify specific patterns in compromised datasets.
  ☆61Updated 3 years ago
• redcode-labs / Solaris
  A local LKM rootkit loader/dropper that lists available security mechanisms
  ☆52Updated 3 years ago
• shabarkin / pointer
  Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.
  ☆67Updated 3 years ago
• jeffjbowie / intelligence_gathering
  A collection of scripts for the purpose of gathering open source intelligence, to be presented at GrayHat, BSides Denver, and Information…
  ☆25Updated 4 years ago
• Peco602 / rusthunter
  RustHunter is a modular incident response framework based on Rust and Ansible to build and compare environmental baselines.
  ☆18Updated 3 years ago
• nccgroup / UninstalledAppCanary
  A Canary which fires when uninstalled
  ☆34Updated 4 years ago
• dfaram7 / pptshots
  Finding sensitive information in the trimmed parts of cropped images
  ☆30Updated 3 years ago
• mnemonic-no / SNIcat
  SNIcat
  ☆127Updated 3 years ago
• cybiere / baboossh
  SSH spreading made easy for red teams in a hurry
  ☆57Updated last year
• pmelson / pyhexdmp
  ☆27Updated 3 years ago
• 0xThiebaut / Signatures
  🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...
  ☆21Updated last year
• sourcefrenchy / certexfil
  Exfiltration based on custom X509 certificates
  ☆26Updated last year
• rek7 / madlib
  PAM Backdoor
  ☆28Updated 2 years ago
• byt3bl33d3r / pythoncookie
  My Python Cookiecutter project template
  ☆31Updated 2 years ago