ainrm/cobaltstrike-suricata-rules

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ainrm/cobaltstrike-suricata-rules)

ainrm / cobaltstrike-suricata-rules

17条检测cobaltstrike的suricata-ids规则

☆68

Alternatives and similar repositories for cobaltstrike-suricata-rules

Users that are interested in cobaltstrike-suricata-rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

al0ne / suricata-rules
View on GitHub
Suricata IDS rules 用来检测红队渗透/恶意行为等，支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等
☆1,272Jul 8, 2023Updated 2 years ago
Al1ex / Alibab-Nacos-Unauthorized-Login
View on GitHub
Alibab Nacos Unauthorized Login
☆14Mar 16, 2023Updated 3 years ago
BambiZombie / StagerDemo
View on GitHub
一个demo
☆23Apr 2, 2024Updated 2 years ago
akkuman / EvilEye
View on GitHub
A BeaconEye implement in Golang. It is used to detect the cobaltstrike beacon from memory and extract some configuration.
☆165Sep 6, 2022Updated 3 years ago
WBGlIl / CS_Decrypt
View on GitHub
☆152Nov 14, 2020Updated 5 years ago
Virtual machines for every use case on DigitalOcean • Ad
Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
LiAoRJ / CS_fakesubmit
View on GitHub
一个可以伪装上线Cobaltstrike的脚本
☆137Sep 28, 2022Updated 3 years ago
UltimateSec / hw-iot-c2
View on GitHub
一款利用某云厂商的物联网平台作为c2的框架
☆23Jun 18, 2023Updated 2 years ago
AbelChe / macos-all
View on GitHub
macos all, 关于macos的实用内容不仅是macos...还有各种常用的渗透、命令行技巧
☆71Nov 26, 2023Updated 2 years ago
timwhitez / StopDefender
View on GitHub
Stop Windows Defender programmatically
☆15Jan 17, 2022Updated 4 years ago
Richard-Tang / CrossC2-C2Profile
View on GitHub
CrossC2通信协议API实现
☆85Jul 26, 2021Updated 4 years ago
vysecurity / VBA-RunPE
View on GitHub
A VBA implementation of the RunPE technique or how to bypass application whitelisting.
☆14Dec 30, 2018Updated 7 years ago
yyhuni / shiroMemshell
View on GitHub
利用shiro反序列化注入冰蝎内存马
☆37Dec 19, 2021Updated 4 years ago
packgenome / PackGenome-Artifacts
View on GitHub
PackGenome: Automatically Generating Robust YARA Rules for Accurate Malware Packer Detection
☆30Dec 6, 2023Updated 2 years ago
LubyRuffy / myip
View on GitHub
互联网侧调试访问者信息的工具
☆33May 21, 2024Updated 2 years ago
Virtual machines for every use case on DigitalOcean • Ad
Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
johneiser / MalleableC2Parser
View on GitHub
A library to parse, modify, and implement Malleable C2 profiles
☆27Feb 9, 2019Updated 7 years ago
Gr1mmie / SharpShellCodeObfus
View on GitHub
Caeser Cipher your shellcode!
☆21Mar 11, 2022Updated 4 years ago
Y4er / CVE-2020-14756
View on GitHub
WebLogic T3/IIOP RCE ExternalizableHelper.class of coherence.jar
☆81Jan 27, 2021Updated 5 years ago
Weik1 / scan_screenshot
View on GitHub
golang写的批量对目标网站进行截图的小工具，适合目标资产比较多时，快速定位薄弱点。
☆33Oct 14, 2022Updated 3 years ago
Rvn0xsy / zipcreater
View on GitHub
ZipCreater主要应用于跨目录的文件上传漏洞的利用，它能够快速进行压缩包生成。
☆186Apr 6, 2022Updated 4 years ago
yuyan-sec / DBeaver-decrypter
View on GitHub
解密DBeaver数据库软件保存的密码
☆41Jul 31, 2023Updated 2 years ago
kracer127 / Mysql-Exp-Collection
View on GitHub
自己编写的udf漏洞提权脚本、msf的mysql模块mof脚本以及后续的提权脚本收集。
☆20Feb 27, 2022Updated 4 years ago
RoomaSec / RmEye
View on GitHub
戎码之眼是一个window上的基于att&ck模型的威胁监控工具.有效检测常见的未知威胁与已知威胁.防守方的利剑
☆535Oct 25, 2023Updated 2 years ago
jas502n / DBconfigReader
View on GitHub
泛微ecology OA系统接口存在数据库配置信息泄露漏洞
☆50Jul 13, 2020Updated 5 years ago
End-to-end encrypted email - Proton Mail • Ad
Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
alexzorin / cve-2021-34558
View on GitHub
☆46Jul 13, 2021Updated 4 years ago
al0ne / suricata_optimize
View on GitHub
Suricata安装部署&丢包优化&性能调优&规则调整&Pfring设置
☆143Oct 14, 2019Updated 6 years ago
waldo-irc / LockdExeDemo
View on GitHub
A demo of the relevant blog post: https://www.arashparsa.com/hook-heaps-and-live-free/
☆193Sep 9, 2021Updated 4 years ago
jas502n / FinalShellDecodePass
View on GitHub
FinalShellDecodePass 加密解密
☆87Dec 1, 2021Updated 4 years ago
getpanic / code_scan
View on GitHub
代码审计关键词扫描工具
☆11Apr 29, 2024Updated 2 years ago
Wjinlei / hwsaudit
View on GitHub
使用Go语言开发的Linux权限审计工具
☆13Jun 15, 2022Updated 3 years ago
ffffffff0x / iprange
View on GitHub
计算ip范围,支持 cidr,ip-range 格式的输入
☆23Sep 5, 2023Updated 2 years ago
A-D-Team / attackRmi
View on GitHub
☆232Jan 3, 2022Updated 4 years ago
Tw1sm / HTTPS-MalleableC2-Config
View on GitHub
Create Cobalt Strike malleable C2 profiles with HTTPS configs
☆18May 23, 2020Updated 5 years ago
Managed Database hosting by DigitalOcean • Ad
PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
PDWR / 3vilGu4rd
View on GitHub
This is a daemon process which make a programe runing all time.
☆84Mar 6, 2022Updated 4 years ago
lz2y / DubboPOC
View on GitHub
Apache Dubbo漏洞测试Demo及其POC
☆64Mar 27, 2023Updated 3 years ago
knightswd / NoPacScan
View on GitHub
NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script
☆87Feb 17, 2022Updated 4 years ago
Ch1ngg / OtherAntSwordAESEncoder
View on GitHub
蚁剑其他脚本AES编/解码器
☆36Aug 28, 2019Updated 6 years ago
burpheart / tcppc-go-fuzz
View on GitHub
一个可以全端口捕获流量的简易蜜罐 tcppc: A simple honeypot to capture TCP/TLS/UDP payloads on ALL ports.
☆13Aug 3, 2022Updated 3 years ago
Velocidex / go-pe
View on GitHub
A Portable Executable parser for Golang
☆47Nov 7, 2025Updated 6 months ago
Ch1ngg / AggressorScript-CreateCloneHiddenAccount
View on GitHub
创建一个克隆隐藏的管理员账号/Create a Clone Hidden Administrator Account
☆22Aug 28, 2019Updated 6 years ago