ekky19 / BeaconHunterView external linksLinks
A PowerShell-based script to analyze network logs from CSV files and detect potential beaconing behavior. Supports VirusTotal integration for IP reputation checks.
☆17May 11, 2025Updated 9 months ago
Alternatives and similar repositories for BeaconHunter
Users that are interested in BeaconHunter are comparing it to the libraries listed below
Sorting:
- ☆24Feb 18, 2025Updated 11 months ago
- ☆100Oct 22, 2025Updated 3 months ago
- Advanced Threat Hunting: Ransomware Group☆29Jul 9, 2025Updated 7 months ago
- A powershell script that prints a lot of IP and connection info to the screen☆31Jan 25, 2017Updated 9 years ago
- ☆33Nov 21, 2024Updated last year
- A class validation and transformation library, to ensure secure data structures in Python.☆10May 16, 2024Updated last year
- Finding Missing People, extract information in Dark Web and Surfaceweb Investigation and Human Trafficking Support☆36May 29, 2024Updated last year
- This is a repository to experiment with MCP for security☆47Jan 22, 2025Updated last year
- netbeacon - monitoring your network capture, NIDS or network analysis process☆19Oct 26, 2013Updated 12 years ago
- Command generator for pentesting tools☆16Dec 2, 2024Updated last year
- Wafid allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.☆10Oct 19, 2020Updated 5 years ago
- CQL Hub is an open repository of detection and hunting queries for CrowdStrike NextGen SIEM and Falcon LogScale. All queries stored here �…☆33Feb 2, 2026Updated last week
- ☆22Nov 22, 2025Updated 2 months ago
- Python client for McAfee ePolicy Orchestrator☆15Mar 12, 2021Updated 4 years ago
- Metasploit_postgresql_database_connection_fix☆12Jan 30, 2019Updated 7 years ago
- Manticore Adversary Emulation Cli☆47Aug 4, 2020Updated 5 years ago
- ADXFlowmaster helps SecOps teams Threat Hunt suspicious network traffic inside & outside of Azure.☆40Oct 30, 2024Updated last year
- Notes on Active Directory analysis and exploitation☆11Mar 7, 2019Updated 6 years ago
- ☆11Jan 5, 2022Updated 4 years ago
- Browser extension for launching multi-platform OSINT queries from grouped YAML profiles.☆10Apr 25, 2025Updated 9 months ago
- A powershell script for creating a Windows honeyport.☆12Jun 24, 2015Updated 10 years ago
- Sysmon Config Pusher - Modernized☆32Jan 7, 2026Updated last month
- OSCP material tools and helpful scripts.☆10Mar 14, 2025Updated 11 months ago
- A collection of short scripts for analysis, encryption and forensics, that can be used for CTF and/or security assessments☆10Sep 22, 2015Updated 10 years ago
- Decoupled AI copilot for pentesting & CTFs. Sidecar tails your shell history, parses tool outputs, grounds suggestions in your notes, and…☆13Nov 21, 2025Updated 2 months ago
- A Docker lab integrating Splunk SIEM with Ollama LLM via Model Context Protocol for AI-powered security operations. Features Promptfoo e…☆18Aug 17, 2025Updated 5 months ago
- ☆12Dec 26, 2022Updated 3 years ago
- Magento Security Scanner☆13Jan 10, 2022Updated 4 years ago
- SentinelOne Windows Installation Diagnostic☆11Apr 14, 2025Updated 10 months ago
- Transform EQL detection rules to VQL artifacts☆12Nov 12, 2021Updated 4 years ago
- Tools and Binaries to use with KAPE☆13Aug 13, 2019Updated 6 years ago
- ☆11Jun 15, 2022Updated 3 years ago
- ☆11Apr 2, 2022Updated 3 years ago
- Simply runs through a wordlist of default/common group IDs and parses each hash to a separate file. Then it runs through the hashes with …☆10Feb 15, 2017Updated 8 years ago
- Tools for Incident Response and Malware Analysis☆11Feb 9, 2025Updated last year
- Pipe stuff to Neo4j☆10Jun 4, 2020Updated 5 years ago
- ☆51Apr 4, 2020Updated 5 years ago
- Oracle Attacks Tool☆13Aug 9, 2016Updated 9 years ago
- A collection of vulnerable web applications in Node.js to practice security fundamentals☆13May 5, 2016Updated 9 years ago