Alternatives and similar repositories for rogueapps:

Users that are interested in rogueapps are comparing it to the libraries listed below

• Permiso-io-tools / azure-activity-log-axe
  Azure Activity Log Axe is a continually developing tool that simplifies the transactional log format provided by Microsoft. The tool leve…
  ☆26Updated 5 months ago
• jischell-msft / RemoteManagementMonitoringTools
  Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations
  ☆83Updated 6 months ago
• securityjoes / Crowdstrike-Deploy
  The ultimate solution for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.
  ☆22Updated 6 months ago
• EC-DIGIT-CSIRC / OpenTIDE
  Open Threat-Informed Detection Engineering
  ☆37Updated last month
• tsale / EDR-Telemetry-Website
  ☆74Updated last week
• krdmnbrk / AttackRuleMap
  Mapping of open-source detection rules and atomic tests.
  ☆125Updated last month
• center-for-threat-informed-defense / summiting-the-pyramid
  Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…
  ☆35Updated this week
• bartblaze / FARA
  Repository that contains a set of purposefully erroneous Yara rules.
  ☆49Updated last year
• 100DaysofYARA / 2025
  Rules shared by the community from 100 Days of YARA 2025
  ☆29Updated 3 weeks ago
• CrowdStrike / VirtualGHOST
  VirtualGHOST Detection Tool
  ☆89Updated 9 months ago
• olafhartong / DefenderHarvester
  Expose a lot of MDE telemetry that is not easily accessible in any searchable form
  ☆103Updated 2 months ago
• anvilogic-forge / armory
  Anvilogic Forge
  ☆93Updated this week
• DefensiveOrigins / DO-LAB
  ☆46Updated 3 weeks ago
• joeavanzato / LogBoost
  Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…
  ☆102Updated 4 months ago
• invictus-ir / Invictus-training
  Repository with supporting materials for Invictus Academy/Training
  ☆42Updated last month
• corelight / Elasticsearch_rules
  Elastic version of SOC prime watcher rules
  ☆29Updated 4 months ago
• AlbinoGazelle / esxi-testing-toolkit
  🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.
  ☆68Updated last month
• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆74Updated this week
• facebookincubator / ForgeArmory
  ForgeArmory provides TTPs that can be used with the TTPForge (https://github.com/facebookincubator/ttpforge).
  ☆99Updated 5 months ago
• 0xAnalyst / Project-Lost
  Living Off Security Tools
  ☆44Updated 3 months ago
• LuccaSA / PingCastle-Notify
  Monitor your PingCastle scans to highlight the rule diff between two scans
  ☆110Updated 6 months ago
• biffalo / easy-wins-endpoint-defense
  Collection of scripts/resources/ideas for attack surface reduction and additional logging to enable better threat hunting on Windows endp…
  ☆38Updated 10 months ago
• cgosec / Blauhaunt
  A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…
  ☆167Updated this week
• C0axx / CanaryHunter
  Canary Hunter aims to be a quick PowerShell script to check for Common Canaries in various formats generated for free on canarytokens.org
  ☆118Updated 2 years ago
• reversinglabs / reversinglabs-siem-rules
  A collection of various SIEM rules relating to malware family groups.
  ☆65Updated 8 months ago
• redcanaryco / ansible-atomic-red-team
  This project is an Ansible Role to execute Atomic Red Team tests against multiple machines by wrapping Invoke-AtomicRedTeam
  ☆25Updated 7 months ago
• olafhartong / MDE-AuditCheck
  MDE relies on some of the Audit settings to be enabled
  ☆97Updated 2 years ago
• 0xAnalyst / DefenderATPQueries
  Hunting Queries for Defender ATP
  ☆80Updated 3 months ago
• korniko98 / pivot-atlas
  ☆84Updated last week
• sans-blue-team / DNS-Exfiltrate
  ☆24Updated 2 years ago