HXTool is an extended user interface for the FireEye HX Endpoint product. HXTool can be installed on a dedicated server or on your physical workstation. HXTool provides additional features and capabilities over the standard FireEye HX web user interface. HXTool uses the fully documented REST API that comes with the FireEye HX for communication w…
☆86Jun 27, 2024Updated last year
Alternatives and similar repositories for HXTool
Users that are interested in HXTool are comparing it to the libraries listed below
Sorting:
- ☆50Aug 11, 2023Updated 2 years ago
- ☆46Jun 1, 2023Updated 2 years ago
- Parses the FireEye HX .mans triage collections and sends them to ElasticSearch☆17Feb 17, 2023Updated 3 years ago
- ☆134Jun 11, 2021Updated 4 years ago
- ☆23Jun 1, 2023Updated 2 years ago
- This repository contains a set of rules samples that can be directly used with Trellix Endpoint Security, in the Exploit Prevention polic…☆29Feb 26, 2026Updated 3 weeks ago
- FireEye iSIGHT Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆16Oct 12, 2018Updated 7 years ago
- Script for parsing Symantec Endpoint Protection logs, VBNs, and ccSubSDK database.☆65Dec 21, 2022Updated 3 years ago
- AuditParser☆60Aug 28, 2013Updated 12 years ago
- The User Interface for GoCrack☆88Mar 11, 2026Updated last week
- A proof-of-concept re-assembler for reverse VNC traffic.☆24May 21, 2023Updated 2 years ago
- Microsoft GPO Readiness Lateral Movement Detection Tool☆16Dec 8, 2022Updated 3 years ago
- Data to test capa's code and rules.☆47Feb 17, 2026Updated last month
- misc scripts☆35Oct 23, 2018Updated 7 years ago
- Detection Engineering with YARA☆87Jan 6, 2024Updated 2 years ago
- Repo containing my public talks☆23May 30, 2023Updated 2 years ago
- ☆17Nov 12, 2019Updated 6 years ago
- Indicators of compromise☆17Jan 29, 2026Updated last month
- Fix acquired .evt - Windows Event Log files (Forensics)☆18Mar 29, 2016Updated 9 years ago
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Jun 11, 2017Updated 8 years ago
- ReversingLabs YARA Rules☆900Nov 3, 2025Updated 4 months ago
- Volatility Plugins☆22May 1, 2015Updated 10 years ago
- A Yara Lua output script for Suricata☆20Apr 7, 2019Updated 6 years ago
- QuasarRAT analysis tools and research report☆29Dec 22, 2023Updated 2 years ago
- Pure Python parser for Application Compatibility Shim Databases (.sdb files)☆110Jan 26, 2021Updated 5 years ago
- ☆22Dec 22, 2020Updated 5 years ago
- Placeholder for my detection repo and misc detection engineering content☆42Oct 20, 2023Updated 2 years ago
- A CLI tool for managing Chronicle user workflows☆18Sep 24, 2025Updated 5 months ago
- general purpose and malware specific analysis tools☆101Oct 22, 2015Updated 10 years ago
- Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…☆17May 18, 2021Updated 4 years ago
- Another MISP module for Python☆18Feb 17, 2020Updated 6 years ago
- Repository resource threat intelligence for SOC☆10Sep 14, 2018Updated 7 years ago
- Repository of YARA rules made by Trellix ATR Team☆627Mar 18, 2025Updated last year
- Awesome List of Enterprise Security Tools' Community Edition☆16Nov 10, 2023Updated 2 years ago
- ☆44Feb 27, 2017Updated 9 years ago
- This repository contains supplemental items including IOCs, and signatures discussed in Huntress blogposts, and other media.☆47Feb 27, 2026Updated 3 weeks ago
- Small and highly portable detection tests based on MITRE's ATT&CK.☆12Jun 24, 2021Updated 4 years ago
- A python script that can be used to scan data within in an IDB using Yara.☆23Sep 4, 2018Updated 7 years ago
- ☆398Updated this week