delivr-to/detections external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

delivr-to/detections

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/delivr-to/detections)

Close

delivr-to / detectionsView on GitHubMore

• External links
• Readme badge

A home for detection content developed by the delivr.to team

☆73Aug 10, 2025Updated 9 months ago

Alternatives and similar repositories for detections

Users that are interested in detections are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• vector-sec / public-sublime-rules

  View on GitHub
  ☆10Jan 22, 2025Updated last year
• sublime-security / sublime-rules

  View on GitHub
  Sublime rules for email attack detection, prevention, and threat hunting.
  ☆361Updated this week
• CyberDefenses / CDI_yara

  View on GitHub
  A collection of YARA rules for public use. Built from information in intelligence profiles, dossiers and file work.
  ☆18Sep 10, 2023Updated 2 years ago
• sublime-security / sublime-cli

  View on GitHub
  A command-line tool and module for the free Sublime Analysis API
  ☆16Jun 18, 2024Updated last year
• ACE-Responder / rpcfirewall-extended-telemetry

  View on GitHub
  ☆16May 3, 2024Updated 2 years ago
• End-to-end encrypted email - Proton Mail • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
• tijme / amd-ryzen-master-driver-v17-exploit

  View on GitHub
  Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).
  ☆157Jan 21, 2023Updated 3 years ago
• leftp / BackupCreds

  View on GitHub
  A C# implementation of dumping credentials from Windows Credential Manager
  ☆63Sep 23, 2023Updated 2 years ago
• chryzsh / docker-cobaltstrike

  View on GitHub
  ☆26Mar 24, 2026Updated last month
• tevora-threat / SecSmash

  View on GitHub
  ☆17Sep 14, 2017Updated 8 years ago
• AttackIQ / DetectIQ

  View on GitHub
  ☆121May 26, 2025Updated 11 months ago
• malpedia / signator-rules

  View on GitHub
  Collection of rules created using YARA-Signator over Malpedia
  ☆143Jan 6, 2026Updated 4 months ago
• lolfsaas / lolfsaas.github.io

  View on GitHub
  Living of the Land of Free SaaS
  ☆75Mar 22, 2026Updated last month
• mthcht / ThreatHunting-Keywords-sigma-rules

  View on GitHub
  Sigma detection rules for hunting with the threathunting-keywords project
  ☆60Mar 2, 2025Updated last year
• G0ldenGunSec / DayBird

  View on GitHub
  Extension functionality for the NightHawk operator client
  ☆27Nov 3, 2023Updated 2 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• embee-research / Yara-detection-rules

  View on GitHub
  Yara Rules for Modern Malware
  ☆80Mar 3, 2024Updated 2 years ago
• StupidBird-Code / Malware_Analysize-Tools

  View on GitHub
  Here are some tools I developed to help analyze malware
  ☆11Nov 8, 2023Updated 2 years ago
• EspressoCake / NativeFunctionStaticMap

  View on GitHub
  A *very* imperfect attempt to correlate Kernel32 function calls to native API (Nt/Zw) counterparts/execution flow.
  ☆28Dec 16, 2021Updated 4 years ago
• NextronSystems / TA-aurora

  View on GitHub
  Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …
  ☆13Sep 27, 2022Updated 3 years ago
• sublime-security / sublime-platform

  View on GitHub
  A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…
  ☆259May 11, 2026Updated last week
• thalpius / microsoft-defender-for-identity-encrypted-password

  View on GitHub
  ☆36May 27, 2024Updated last year
• UNIT777 / Email2TheHive

  View on GitHub
  This package allows for creating alerts in The Hive from emails retrieved from a Microsoft Exchange mailbox.
  ☆12Jul 13, 2017Updated 8 years ago
• Tylous / Dent

  View on GitHub
  A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.
  ☆15Apr 4, 2023Updated 3 years ago
• SecurityRiskAdvisors / letItGo

  View on GitHub
  Enumerate and check domains for Azure tenants
  ☆57Feb 1, 2022Updated 4 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• vysecurity / Nemesis-Download-Watcher

  View on GitHub
  Watches the Downloads folder for any new files and inserts it into Nemesis for analysis.
  ☆15Feb 29, 2024Updated 2 years ago
• 3CORESec / SIEGMA

  View on GitHub
  SIEGMA - Transform Sigma rules into SIEM consumables
  ☆159Mar 10, 2025Updated last year
• Sec42 / teams-decoder

  View on GitHub
  Extract messages from a local Microsoft Teams installation
  ☆15Jan 14, 2023Updated 3 years ago
• mfdooom / threadless_loader_rs

  View on GitHub
  Threadless Injection Payload Toolkit
  ☆12Oct 12, 2023Updated 2 years ago
• EspressoCake / ADIDNS_Parser

  View on GitHub
  Parser and reconciliation tooling for large Active Directory environments.
  ☆33Feb 18, 2025Updated last year
• xforcered / BOFMask

  View on GitHub
  ☆128Jun 28, 2023Updated 2 years ago
• codewhitesec / daphne

  View on GitHub
  Proof-of-Concept to evade auditd by tampering via ptrace
  ☆19Aug 3, 2023Updated 2 years ago
• OtterHacker / Cerbere

  View on GitHub
  ☆48Feb 11, 2023Updated 3 years ago
• FalconForceTeam / bof-winrm-plugin-jump

  View on GitHub
  ☆36Jan 23, 2025Updated last year
• GPUs on demand by Runpod - Special Offer Available • Ad
  Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
• Teach2Breach / noldr

  View on GitHub
  Dynamically resolve API function addresses at runtime in a secure manner.
  ☆72Nov 11, 2025Updated 6 months ago
• Yamato-Security / hayabusa-rules

  View on GitHub
  Curated Windows event log Sigma rules used in Hayabusa and Velociraptor.
  ☆219May 3, 2026Updated 2 weeks ago
• axon-git / rapid-response

  View on GitHub
  Repository for storage of Axon Rapid Response related queries, scripts and more
  ☆10Jul 22, 2025Updated 9 months ago
• NetSPI / silkwasm

  View on GitHub
  HTML Smuggling with Web Assembly
  ☆74Feb 20, 2024Updated 2 years ago
• Octoberfest7 / Proxy_Egress_Persistence

  View on GitHub
  A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies
  ☆34Sep 15, 2022Updated 3 years ago
• vadim-hunter / Detection-Ideas-Rules

  View on GitHub
  Detection Ideas & Rules repository.
  ☆178Sep 10, 2021Updated 4 years ago
• jordanpotti / opsec-aggressor

  View on GitHub
  Aggressor script that gets the latest commands from CobaltStrikes web site and creates an aggressor script based on tool options.
  ☆23Oct 6, 2021Updated 4 years ago