A home for detection content developed by the delivr.to team
☆75Aug 10, 2025Updated 10 months ago
Alternatives and similar repositories for detections
Users that are interested in detections are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆11Jan 22, 2025Updated last year
- Sublime rules for email attack detection, prevention, and threat hunting.☆365Updated this week
- A collection of YARA rules for public use. Built from information in intelligence profiles, dossiers and file work.☆18Sep 10, 2023Updated 2 years ago
- A command-line tool and module for the free Sublime Analysis API☆16Jun 18, 2024Updated 2 years ago
- ☆16May 3, 2024Updated 2 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).☆157Jan 21, 2023Updated 3 years ago
- A C# implementation of dumping credentials from Windows Credential Manager☆63Sep 23, 2023Updated 2 years ago
- ☆29Mar 24, 2026Updated 3 months ago
- ☆17Sep 14, 2017Updated 8 years ago
- ☆121May 26, 2025Updated last year
- Collection of rules created using YARA-Signator over Malpedia☆146May 18, 2026Updated last month
- Living of the Land of Free SaaS☆76Mar 22, 2026Updated 3 months ago
- Sigma detection rules for hunting with the threathunting-keywords project☆60Mar 2, 2025Updated last year
- Extension functionality for the NightHawk operator client☆27Nov 3, 2023Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Yara Rules for Modern Malware☆80Mar 3, 2024Updated 2 years ago
- Here are some tools I developed to help analyze malware☆11Nov 8, 2023Updated 2 years ago
- A *very* imperfect attempt to correlate Kernel32 function calls to native API (Nt/Zw) counterparts/execution flow.☆28Dec 16, 2021Updated 4 years ago
- Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …☆13Sep 27, 2022Updated 3 years ago
- A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…☆262Jun 18, 2026Updated last week
- ☆36May 27, 2024Updated 2 years ago
- This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.☆12Jul 13, 2017Updated 8 years ago
- A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.☆15Apr 4, 2023Updated 3 years ago
- Enumerate and check domains for Azure tenants☆58Feb 1, 2022Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Watches the Downloads folder for any new files and inserts it into Nemesis for analysis.☆15Feb 29, 2024Updated 2 years ago
- SIEGMA - Transform Sigma rules into SIEM consumables☆160Mar 10, 2025Updated last year
- Extract messages from a local Microsoft Teams installation☆15Jan 14, 2023Updated 3 years ago
- Threadless Injection Payload Toolkit☆12Oct 12, 2023Updated 2 years ago
- Parser and reconciliation tooling for large Active Directory environments.☆33Feb 18, 2025Updated last year
- ☆128Jun 28, 2023Updated 3 years ago
- Proof-of-Concept to evade auditd by tampering via ptrace☆19Aug 3, 2023Updated 2 years ago
- ☆48Feb 11, 2023Updated 3 years ago
- ☆36Jan 23, 2025Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Dynamically resolve API function addresses at runtime in a secure manner.☆73Nov 11, 2025Updated 7 months ago
- Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.☆221Updated this week
- Repository for storage of Axon Rapid Response related queries, scripts and more☆10Jul 22, 2025Updated 11 months ago
- HTML Smuggling with Web Assembly☆76Feb 20, 2024Updated 2 years ago
- A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies☆34Sep 15, 2022Updated 3 years ago
- Detection Ideas & Rules repository.☆179Sep 10, 2021Updated 4 years ago
- Aggressor script that gets the latest commands from CobaltStrikes web site and creates an aggressor script based on tool options.☆23Oct 6, 2021Updated 4 years ago