Alternatives and similar repositories for PowershellDetect

Users that are interested in PowershellDetect are comparing it to the libraries listed below

• Qihoo360 / Luwak
  利用预训练语言模型从非结构化威胁报告中提取 MITRE ATT&CK TTP 信息
  ☆74Updated 2 years ago
• howmp / CobaltStrikeDetect
  CobaltStrikeDetect
  ☆49Updated 3 months ago
• verctor / Cobalt_Homework
  分析cobaltstrike c2 协议
  ☆68Updated 5 years ago
• TimelifeCzy / VirusCheckTools
  基于行为特征进行快速匹配病毒专杀工具，辅助应急响应
  ☆37Updated 5 years ago
• eastmountyxz / APT-Analysis-Report-Trans
  该资源主要是作者翻译各大安全厂商的APT报告，希望对您有所帮助。
  ☆20Updated 4 years ago
• Fool-Alex / Virus-Learning
  感染PE文件的病毒学习过程
  ☆32Updated 4 years ago
• burpheart / CS_mock
  模拟cobalt strike beacon上线包. Simulation cobalt strike beacon connection packet.
  ☆78Updated 3 years ago
• guimaizi / binary_security
  ☆32Updated 5 years ago
• ainrm / cobaltstrike-suricata-rules
  17条检测cobaltstrike的suricata-ids规则
  ☆67Updated 3 years ago
• theSecHunter / Hades
  Hades is an cross-platform HIDS with kernel-space data collection.
  ☆47Updated 2 years ago
• huoji120 / ai-webshell-detect
  机器学习检测webshell
  ☆68Updated 4 years ago
• jas502n / cs_yara
  check cs yara rules
  ☆42Updated 4 years ago
• huoji120 / DuckSysEye
  SysEye是一个window上的基于att&ck现代EDR设计思想的威胁响应工具.有效检测常见的未知威胁与已知威胁.防守方的利剑
  ☆63Updated 3 years ago
• 404notf0und / AI-for-Security-Landing
  企业级安全智能化实践
  ☆69Updated 3 years ago
• satan1a / traffic-analysis-train
  对恶意流量分析的练习
  ☆25Updated 3 years ago
• 0verSp4ce / Bundler
  PE学习小工具，它的作用就是将32位的PE文件的按内存对齐，然后合并所有节，接着新增一个节存放Shellcode，将程序入口位置修改到Shellcode的位置。
  ☆18Updated 3 years ago
• WBGlIl / ReflectiveDLL_Patch
  ☆37Updated 5 years ago
• coodyer / fire_vulnerability_scanner
  一款http协议的漏洞扫描框架
  ☆27Updated 5 years ago
• G4rb3n / Malware-Picture
  恶意软件原理图
  ☆59Updated 4 years ago
• M-Kings / CVE-2021-36798
  Cobalt Strike < 4.4 dos CVE-2021-36798
  ☆37Updated 4 years ago
• huoji120 / safe_duck
  一款linux下的安全产品目的是满足个人安全需求有SSH爆破防护和SYN攻击扫描防护功能,基于netfilter,
  ☆20Updated last year
• gojue / rootkit-sample
  ☆48Updated 3 years ago
• bigBestWay / cayenne
  a LINUX netfilter rookit by HTTP tunnel
  ☆23Updated 4 years ago
• brant-ruan / slides-and-papers
  slides and papers from (or partly from) Bonan
  ☆22Updated last year
• crisprss / goHashDumper
  用于Dump指定进程的内存,主要利用静默退出机制(SilentProcessExit)和Windows API(MiniDumpW)实现
  ☆25Updated 3 years ago
• 360quake / CobaltStrike-JARM
  ☆21Updated 4 years ago
• a232319779 / mmpi
  NextB的恶意邮件识别项目
  ☆30Updated 2 years ago
• wonderkun / crawler
  利用github action定时爬取先知、安全客等的文章进行保存
  ☆65Updated 3 years ago
• coca1ne / DLLHijack_Detecter
  分析指定应用程序的劫持DLL
  ☆14Updated 10 years ago
• JamVayne / CobaltStrikeDos
  CVE-2021-36798: CobaltStrike < 4.4 Dos
  ☆103Updated 4 years ago