Alternatives and similar repositories for cisco-ios-xe-implant-detection

Users that are interested in cisco-ios-xe-implant-detection are comparing it to the libraries listed below

• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆66Updated 3 years ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆42Updated 2 years ago
• lkarlslund / adalanche-sampledata
  Explore the GOAD Active Directory lab in 5 minutes with Adalanche
  ☆42Updated last year
• huntandhackett / Antignis
  Source code and examples for Antignis
  ☆44Updated 3 years ago
• Neo23x0 / god-mode-rules
  God Mode Detection Rules
  ☆135Updated last year
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆60Updated 3 years ago
• austinsonger / Elastic-Security
  Repo for Automations and other solutions for Elastic SIEM/Security.
  ☆18Updated 4 years ago
• Neo23x0 / Talks
  Slides of my public talks
  ☆56Updated 2 years ago
• xg5-simon / MS-Graph-BlueTeam
  MS Graph Commands and Tools for Blue Teamers
  ☆52Updated 2 years ago
• silverfort-open-source / latma
  ☆80Updated 2 years ago
• adulau / HHHash
  HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.
  ☆79Updated 2 years ago
• priamai / sigmatau
  An extension of the sigma standard to include security metrics.
  ☆15Updated 2 years ago
• MHaggis / ShellSweep
  ShellSweeping the evil.
  ☆53Updated last year
• vulncheck-oss / cisco-ios-xe-implant-scanner
  A go-exploit to scan for implanted Cisco IOS XE Systems
  ☆41Updated last year
• sans-blue-team / DNS-Exfiltrate
  ☆29Updated 3 years ago
• markuskont / pikksilm
  Look into EDR events from network
  ☆25Updated 2 months ago
• brokensound77 / LoFP
  Living off the False Positive!
  ☆41Updated last year
• NCSC-NL / citrix-2025
  ☆51Updated 5 months ago
• haim-n / Windows-Security-Assessment
  Assess Windows OS for security misconfigurations and hardening opportunities.
  ☆36Updated last year
• rapid7 / Rapid7-Labs
  Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…
  ☆76Updated last month
• MISP / misp-wireshark
  Lua plugin to extract data from Wireshark and convert it into MISP format
  ☆49Updated 2 years ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆73Updated 5 months ago
• NVISOsecurity / nviso-cti
  ☆44Updated 6 months ago
• corelight / Dashboards-Splunk-DNS-Hunting-Beaconing
  DNS Dashboard for hunting and identifying beaconing
  ☆16Updated 5 years ago
• CERN-CERT / pDNSSOC
  Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.
  ☆56Updated 3 months ago
• SentineLabs / log4j_response
  ☆15Updated 4 years ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆54Updated last year
• QueenSquishy / Zombie
  General Content
  ☆25Updated last month
• RedSiege / GPPDeception
  This script generates a groups.xml file that mimics a real GPP to create a new user on domain-joined computers
  ☆46Updated 5 years ago
• cyb3rmik3 / Hunting-Lists
  A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.
  ☆33Updated last year