Indicators of Normality
☆11Jul 22, 2022Updated 3 years ago
Alternatives and similar repositories for ION
Users that are interested in ION are comparing it to the libraries listed below
Sorting:
- Tools for playing w/ CobaltStrike config - extractin, detection, processing, etc...☆28Apr 13, 2023Updated 2 years ago
- System Call Integrity Layer - experimental security research☆25Jan 31, 2026Updated last month
- ☆27Feb 6, 2022Updated 4 years ago
- Hundred Days of Yara Challenge☆12Jun 21, 2022Updated 3 years ago
- Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk☆10Aug 18, 2022Updated 3 years ago
- ☆15Nov 25, 2021Updated 4 years ago
- Help deobfuscate VBScript☆18Jul 1, 2022Updated 3 years ago
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆66Jul 7, 2022Updated 3 years ago
- ☆33Feb 26, 2022Updated 4 years ago
- Python code to Serialize and Unserialize java binary serialization format.☆29Feb 27, 2026Updated 3 weeks ago
- Conceptual Methods for Finding Commonalities in Macho Files☆12Mar 21, 2024Updated 2 years ago
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Feb 6, 2025Updated last year
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Dec 28, 2021Updated 4 years ago
- Wrapper for TSK (Sleuth Kit) Bindings☆12Jan 10, 2023Updated 3 years ago
- Cybersecurity Incidents Mind Maps☆34Sep 29, 2021Updated 4 years ago
- ☆71Mar 8, 2026Updated 2 weeks ago
- Parsers for common structures across windows formats.☆12Aug 23, 2023Updated 2 years ago
- A few quick recipes for those that do not have much time during the day☆22Oct 28, 2024Updated last year
- Example of Fly.io machines orchestration with Terraform and DNSimple☆16Mar 5, 2023Updated 3 years ago
- Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.☆53Oct 23, 2024Updated last year
- Public rules and samples for various automations through LimaCharlie.io☆14Dec 16, 2021Updated 4 years ago
- A list of IOCs applicable to PoshC2☆24Aug 3, 2020Updated 5 years ago
- ☆19Oct 23, 2020Updated 5 years ago
- NTFS Security Descriptor Stream ($Secure:$SDS) parser☆14Jan 9, 2023Updated 3 years ago
- LNK to JSON☆14Mar 7, 2019Updated 7 years ago
- Cleo Unrestricted file upload and download PoC (CVE-2024-50623)☆25Dec 11, 2024Updated last year
- Comprehensive pfSense deployment, monitoring, and security knowledge base: From basic configuration to advanced SIEM infrastructure, IDS/…☆22Mar 16, 2026Updated last week
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆88Mar 11, 2026Updated last week
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆60Oct 28, 2022Updated 3 years ago
- ☆39Oct 9, 2025Updated 5 months ago
- AdHoc solutions☆49Aug 29, 2023Updated 2 years ago
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆154Apr 25, 2022Updated 3 years ago
- ☆21May 8, 2022Updated 3 years ago
- ☆23Jul 7, 2023Updated 2 years ago
- POC of CVE-2022-21881 exploited at TianfuCup 2021 to escape Chrome Sandbox☆21Aug 9, 2022Updated 3 years ago
- ☆24Aug 30, 2019Updated 6 years ago
- ☆44Jul 11, 2025Updated 8 months ago
- An autonomous OSINT agent for social media using any OpenAI-compatible API for deep analysis and reporting.☆56Updated this week
- CyberArk Privileged Access Security Application Performance Monitoring Dashboards for Splunk☆40May 20, 2020Updated 5 years ago