hardenedlinux / hardenedlinux-zeek-scriptsLinks
☆38Updated last year
Alternatives and similar repositories for hardenedlinux-zeek-scripts
Users that are interested in hardenedlinux-zeek-scripts are comparing it to the libraries listed below
Sorting:
- 《横向移动攻击与检测技术》专栏文章☆17Updated 5 years ago
- Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))☆31Updated 5 years ago
- 威胁检测规则集☆15Updated 6 years ago
- ☆55Updated last year
- 天御攻防实验室 - 威胁猎杀实战系列☆102Updated 6 years ago
- Explore Indicators of Compromise Automatically☆95Updated 5 years ago
- ☆24Updated 5 years ago
- ATT&CK技战术数据☆16Updated 4 years ago
- ThreatHound is a threat intelligence query tool use for detecting potentially malicious IP or domains. It combines the MISP open source t…☆40Updated 5 years ago
- A golang client of our webshell scanner API☆28Updated 7 years ago
- nmap service and application version detection (without nmap installation)☆115Updated 7 years ago
- ☆11Updated 2 months ago
- The Whitepaper For Enterprise Security created by Monster Zero Team☆36Updated 8 years ago
- The python client of passivedns.cn☆98Updated 6 years ago
- suricata IDS的规则,测试在用的,部分自写的规则视情况放出。☆18Updated 6 years ago
- A Solution For Cross-Platform Obfuscated Commands Detection presented on CIS2019 China. 动静态Bash/CMD/PowerShell命令混淆检测框架 - CIS 2019大会☆165Updated 6 years ago
- ☆30Updated 2 years ago
- IDS Bypass tricks☆122Updated 6 years ago
- It is a repository for Red Team emulation based on MITRE ATT&CK.☆16Updated 6 years ago
- Oops, It's funny to detect a webshell. Temporarily not maintained☆18Updated 7 years ago
- ☆57Updated 4 years ago
- WebLogic Honeypot is a low interaction honeypot to detect CVE-2017-10271 in the Oracle WebLogic Server component of Oracle Fusion Middlew…☆32Updated 5 years ago
- 恶意脚本检测分类工具☆40Updated 4 years ago
- Automated SonarQube☆72Updated 6 years ago
- Sep0lkit's Blog☆15Updated 5 years ago
- Code snippet accompanying blog post☆30Updated 9 years ago
- check_IP is to judge whether a IP is malicious based on open threat intelligence,基于开源威胁情报AlienVault,排查IP地址及域名的恶意性☆52Updated 7 years ago
- Phantom eye——A passive business logic vulnerability auditing tool☆55Updated 6 years ago
- Automatic extract anomalious Web attack Payloads with Unsupervised Machine Learning algorithms☆36Updated 6 years ago
- 基于Flink实现实时冰蝎(Behinder)流量检测☆40Updated 5 years ago