corelight / ripple20

Related projects: ⓘ

• claroty / CVE2020-0796
  CVE2020-0796 SMBv3 RCE
  ☆60Updated 4 years ago
• salesforce / bro-sysmon
  How to Zeek Sysmon Logs!
  ☆100Updated 2 years ago
• olafhartong / detection-sources
  ☆52Updated 5 years ago
• Cymmetria / weblogic_honeypot
  WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the Oracle WebLogic Server component of Oracle Fusion Middlew…
  ☆31Updated 4 years ago
• ozuriexv / SublimeSuricata
  ☆35Updated 9 months ago
• theparanoids / rdfp
  Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
  ☆36Updated last year
• Te-k / pycrtsh
  Python 3 library to request https://crt.sh/
  ☆30Updated last year
• sisoc-tokyo / Real-timeDetectionAD_ver2
  ☆82Updated 3 years ago
• fox-it / cobaltstrike-extraneous-space
  Historical list of {Cobalt Strike,NanoHTTPD} servers
  ☆123Updated 5 years ago
• mitre-attack / joystick
  Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…
  ☆64Updated last year
• jipegit / IncidentsMindMaps
  Cybersecurity Incidents Mind Maps
  ☆32Updated 2 years ago
• lion-gu / ioc-explorer
  Explore Indicators of Compromise Automatically
  ☆94Updated 4 years ago
• R0B1NL1N / SuricataRules-AttackDetection-
  ☆11Updated this week
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆98Updated 3 years ago
• fatihsirin / Tweettioc-Splunk-App
  Tweettioc Splunk App
  ☆20Updated 4 years ago
• mitre-attack / attack-evals
  ATT&CK Evaluations website (DEPRECATED)
  ☆59Updated 3 years ago
• hxnoyd / ossem-power-up
  A tool to assess data quality, built on top of the awesome OSSEM.
  ☆76Updated 2 years ago
• exp0se / detect_kerberos_attacks
  Detect kerberos attacks in pcap files
  ☆27Updated 8 years ago
• Coalfire-Research / pymetasploit3
  Python3 Metasploit automation library
  ☆20Updated last year
• imjdl / CVE-2019-11510-poc
  Pulse Secure SSL VPN pre-auth file reading
  ☆50Updated 5 years ago
• mitre / sandcat
  A CALDERA plugin
  ☆63Updated 7 months ago
• CyberMonitor / Invoke-Adversary
  Simulating Adversary Operations
  ☆93Updated 6 years ago
• AlkenePan / awesome-bro
  Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))
  ☆31Updated 4 years ago
• csirtgadgets / verbose-robot
  The Fastest way to consume Threat Intel
  ☆25Updated 2 years ago
• ninoseki / ukemi
  A CLI tool for querying passive DNS services
  ☆41Updated 9 months ago
• DarkenCode / yara-rules
  Repository of yara rules
  ☆45Updated 9 years ago
• OTRF / bloodhound-notebook
  BloodHound Cypher Queries Ported to a Jupyter Notebook
  ☆53Updated 4 years ago
• intelforge / tmc
  Threat Mapping Catalogue
  ☆17Updated 3 years ago
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆40Updated 5 years ago