Alternatives and similar repositories for Ripple-20-Detection-Logic

Users that are interested in Ripple-20-Detection-Logic are comparing it to the libraries listed below

• cyware-labs / Threat-Response-Docker
  ☆44Updated 2 years ago
• activeshadow / go-atomicredteam
  go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…
  ☆49Updated 2 years ago
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆32Updated last month
• tstillz / webshell-scan
  Simple web shell scanner written in Golang.
  ☆89Updated 6 years ago
• B0fH / yara-suricata
  A Yara Lua output script for Suricata
  ☆20Updated 6 years ago
• tstillz / webshell-analyzer
  Web shell scanner and analyzer.
  ☆112Updated 2 years ago
• salesforce / bro-sysmon
  How to Zeek Sysmon Logs!
  ☆102Updated 3 years ago
• TravisFSmith / mitre_attack
  ☆78Updated 5 years ago
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆158Updated 7 months ago
• mitre / sandcat
  A CALDERA plugin
  ☆70Updated 2 weeks ago
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆79Updated last week
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆45Updated 6 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆37Updated 3 years ago
• markuskont / pikksilm
  Look into EDR events from network
  ☆24Updated 5 months ago
• EmergingThreats / log4shell-detection
  ☆12Updated 3 years ago
• mvelazc0 / attack2jira
  attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage
  ☆114Updated 2 years ago
• Truvis / Suricata_Threat-Hunting-Rules
  Collection of Suricata rule sets that I use modified to my environments.
  ☆40Updated 5 years ago
• alertflex / altprobe
  collector/runner
  ☆65Updated last month
• airman604 / splunk_whisperer
  ☆33Updated 7 years ago
• corelight / ripple20
  A Zeek package for the passive detection of "Ripple20" vulnerabilities in the Treck TCP/IP stack.
  ☆33Updated 3 years ago
• refractionPOINT / limacharlie
  Old home of LimaCharlie, open source EDR
  ☆32Updated 2 years ago
• intelforge / tmc
  Threat Mapping Catalogue
  ☆18Updated 4 years ago
• 0xrawsec / gene-rules
  ☆41Updated 3 years ago
• olafhartong / detection-sources
  ☆53Updated 6 years ago
• bro / bro-osquery
  Bro integration with osquery
  ☆15Updated 2 years ago
• akamai / luda
  Malicious actors often reuse code to deploy their malware, phishing website or CNC server. As a result, similiaries can be found on URLs …
  ☆75Updated last year
• theparanoids / rdfp
  Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
  ☆40Updated 2 years ago
• BinaryDefense / beacon-fronting
  A simple command line program to help defender test their detections for network beacon patterns and domain fronting
  ☆70Updated 3 years ago
• runZeroInc / runzero-tools
  Open source tools, libraries, and datasets related to the runZero product and associated research
  ☆121Updated 2 months ago
• ma111e / melody
  Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…
  ☆141Updated 8 months ago