fulmetalpackets / protohackingLinks
This repository contains the code and PCAPS used for the SANS webinar, "Hacking Proprietary Protocols" given on February 23, 2021.
☆34Updated 3 years ago
Alternatives and similar repositories for protohacking
Users that are interested in protohacking are comparing it to the libraries listed below
Sorting:
- My Jupyter Notebooks☆36Updated 3 months ago
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆31Updated 4 months ago
- A CALDERA plugin☆26Updated 10 months ago
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆63Updated 2 years ago
- Automatic detection engineering technical state compliance☆55Updated 11 months ago
- Linux #rootkit and #malware revealer☆26Updated 10 months ago
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated last year
- Scripts and lists to help generate YARA friendly string mutations☆21Updated 2 years ago
- Threat Hunting is time consuming enough as it is. Coming up with and tracking metrics to justify your hunt team to the Execs often takes…☆12Updated 2 years ago
- An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.☆21Updated 2 years ago
- labs_modern_malware_c2 Originally supporting Defcon workshop, will morph into Attack Defend for C2.☆19Updated 2 years ago
- Yara Rules for Modern Malware☆77Updated last year
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆73Updated 3 years ago
- Offensive Research Guide to Help Defense Improve Detection☆31Updated 2 years ago
- Notes from my "Implementing a Kick-Butt Training Program: Blue Team GO!" talk☆12Updated 6 years ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆52Updated 6 months ago
- Jupyter Notebooks for Cyber Threat Intelligence☆35Updated last year
- Scripts to integrate DFIR-IRIS, MISP and TimeSketch☆34Updated 3 years ago
- A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…☆27Updated 2 years ago
- ☆15Updated 3 years ago
- This repository contains sample log data that were collected after running adversary simulations in Microsoft 365☆21Updated 8 months ago
- ☆47Updated 2 months ago
- Converts Sigma detection rules to a Splunk alert configuration.☆13Updated 3 years ago
- Simple PowerShell script to enable process scanning with Yara.☆94Updated 2 years ago
- A zero dependency and customizable Python library for scanning Windows and Linux process memory.☆66Updated last year
- Reads and prints information from the website MalAPI.io☆38Updated 3 years ago
- Defence Against the Dark Arts☆34Updated 5 years ago
- Easily create index of your SANS books☆16Updated 2 years ago
- Baseline a Windows System against LOLBAS☆27Updated last year
- DNS Dashboard for hunting and identifying beaconing☆16Updated 4 years ago