evilsocket / sauronLinks
A minimalistic cross-platform malware scanner with non-blocking realtime filesystem monitoring using YARA rules.
☆228Updated 3 years ago
Alternatives and similar repositories for sauron
Users that are interested in sauron are comparing it to the libraries listed below
Sorting:
- A fast and secure multi protocol honeypot.☆325Updated 3 years ago
- WhiteBeam: Transparent endpoint security☆101Updated 2 years ago
- Entropy scanner for Linux to detect packed or encrypted binaries related to malware. Finds malicious files and Linux processes and gives …☆167Updated last year
- How to setup a honeypot with an IDS, ELK and TLS traffic inspection☆164Updated 3 years ago
- Signature based honeypot detector tool written in Golang☆107Updated 9 months ago
- Login Pages Database forms a knowledge base on login pages related to malicious activities (C2 panels, phishing kits...).☆39Updated 2 years ago
- Signing-key abuse and update exploitation framework☆132Updated 8 months ago
- MalwareDB: bookkeeping for malware, goodware, and unknown files with relationship discovery☆55Updated this week
- NIST-based CVE lookup store and API powered by Rust.☆136Updated 4 months ago
- Quick network scanner library. https://crates.io/crates/qscan☆91Updated 3 years ago
- Bash Script to extract GNU/Linux forensic artifacts for digital forensic analysis and incident response.☆43Updated 2 years ago
- DEbian Cve REproducer Tool☆27Updated last week
- BSidesRoc 2022 Linux Malware/Forensics Course☆75Updated 3 years ago
- Rip Raw is a small tool to analyse the memory of compromised Linux systems.☆134Updated 3 years ago
- reveal origins behind reverse proxies & hidden services 👀 🧅 💻☆37Updated 4 months ago
- Malware vulnerability intel tool for third-party attackers☆122Updated last year
- Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…☆128Updated 2 years ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆149Updated 2 years ago
- ☆55Updated last year
- Columbo is a computer forensic analysis tool used to simplify and identify specific patterns in compromised datasets.☆61Updated 4 years ago
- Repository and archive for Killing The Bear Gitbook☆83Updated 2 years ago
- My very personal and opinionatedly organized infosec/cybersec sources in one OPML file☆59Updated 3 years ago
- This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.☆120Updated 2 years ago
- Pandora is an analysis framework to discover if a file is suspicious and conveniently show the results☆276Updated this week
- Crawlector is a threat hunting framework designed for scanning websites for malicious objects.☆124Updated last month
- macOS forensic timeline generator using the analysis result DBs of mac_apt☆92Updated 2 years ago
- Let's be scanned. A low-interaction honeypot focused on network scanners and bots. It integrates very well with IVRE to build a self-host…☆134Updated this week
- UniSBOM is a tool to build a software bill of materials on any platform with a unified data format.☆36Updated 3 years ago
- clif is a command-line interface (CLI) application fuzzer, pretty much what wfuzz or ffuf are for web. It was inspired by sudo vulnerabil…☆98Updated 3 years ago
- tool for generating wordlists or extending an existing one using mutations.☆389Updated this week