dtact / divd-2021-00038--log4j-scanner
Scan systems and docker images for potential log4j vulnerabilities. Able to patch (remove JndiLookup.class) from layered archives. Will detect in-depth (layered archives jar/zip/tar/war and scans for vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046 and CVE-2021-45105). Binaries for Windows, Linux and OsX, but can be build on each platfo…
☆50Updated 2 years ago
Related projects: ⓘ
- A tool to assess the compliance of a VMware vSphere environment against the CIS Benchmark.☆47Updated last year
- Designed to be installed on a fresh install of raspbian on a raspberry pi, by combining Respounder (Responder detection) and Artillery (p…☆34Updated 4 years ago
- OpenIOC rules to facilitate hunting for indicators of compromise☆38Updated 2 years ago
- Tools and scripts by Arctic Wolf☆68Updated 5 months ago
- ☆18Updated 7 years ago
- Example tools for detecting software using OpenSSL 3.0.0 - 3.0.6 (vulnerable to latest unnamed vulnerability)☆39Updated last year
- Security Alert Decoration☆25Updated 4 months ago
- A python script to acquire multiple aws ec2 instances in a forensically sound-ish way☆37Updated 2 years ago
- Active Directory Certificate Services☆20Updated 7 years ago
- ☆113Updated 11 months ago
- ☆35Updated 9 months ago
- ☆13Updated this week
- ☆20Updated this week
- Search a filesystem for indicators of compromise (IoC).☆66Updated 3 weeks ago
- Multi Vagrant environment with Active Directory☆140Updated 6 years ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆51Updated 2 months ago
- Graylog Content Pack for Watchguard Fireware Logging☆34Updated 5 years ago
- ☆19Updated 5 years ago
- Alert Wizard plugin for Graylog to manage the alert rules☆46Updated 2 months ago
- ☆65Updated this week
- Find accounts using common and default passwords in Active Directory.☆65Updated 5 years ago
- CrowdStrike's Open Source Policy & Contribution Guide☆35Updated last year
- Explore the GOAD Active Directory lab in 5 minutes with Adalanche☆33Updated 8 months ago
- Universal Winlogbeat configuration☆30Updated 2 years ago
- A web application to streamline the development of STIGs from SRGs☆60Updated last month
- Collection of useful Canary tools☆67Updated last week
- Threat Intelligence with Elastic - Minemeld integration with Elasticsearch☆19Updated 3 years ago
- CrowdStrike Archive Scan Tool☆83Updated 2 years ago
- Implementing the CIS Critical Controls (almost) for Free☆85Updated 2 years ago
- Provides various Windows Server Active Directory (AD) security-focused reports.☆85Updated 2 months ago
- Elastic TIP is a python tool which automates the process of aggregating Threat Intelligence and ingesting the intelligence into a common …☆27Updated last month