k3idii/ION external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

k3idii/ION

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/k3idii/ION)

Close

k3idii / IONView on GitHubMore

• External links
• Readme badge

Indicators of Normality

☆11Jul 22, 2022Updated 3 years ago

Alternatives and similar repositories for ION

Users that are interested in ION are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• k3idii / CobaltStrike-Tools

  View on GitHub
  Tools for playing w/ CobaltStrike config - extractin, detection, processing, etc...
  ☆28Apr 13, 2023Updated 2 years ago
• 0xflux / Scil

  View on GitHub
  System Call Integrity Layer - experimental security research
  ☆25Jan 31, 2026Updated 2 months ago
• pmelson / pyhexdmp

  View on GitHub
  ☆27Feb 6, 2022Updated 4 years ago
• CD-R0M / YARA

  View on GitHub
  Hundred Days of Yara Challenge
  ☆12Jun 21, 2022Updated 3 years ago
• dozernz / bugstropics

  View on GitHub
  Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk
  ☆10Aug 18, 2022Updated 3 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• DissectMalware / MDIExtractor

  View on GitHub
  ☆15Nov 25, 2021Updated 4 years ago
• mandiant / vbScript_deobfuscator

  View on GitHub
  Help deobfuscate VBScript
  ☆18Jul 1, 2022Updated 3 years ago
• Immersive-Labs-Sec / BruteRatel-DetectionTools

  View on GitHub
  A collection of Tools and Rules for decoding Brute Ratel C4 badgers
  ☆66Jul 7, 2022Updated 3 years ago
• woanware / etw-event-dumper

  View on GitHub
  ☆33Feb 26, 2022Updated 4 years ago
• k3idii / Deserek

  View on GitHub
  Python code to Serialize and Unserialize java binary serialization format.
  ☆29Feb 27, 2026Updated last month
• g-les / macho_similarity

  View on GitHub
  Conceptual Methods for Finding Commonalities in Macho Files
  ☆12Mar 21, 2024Updated 2 years ago
• elastic / sans-dfir-2022

  View on GitHub
  Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"
  ☆11Feb 6, 2025Updated last year
• forensicmatt / RustyReg

  View on GitHub
  Registry to JSON. This Project is for learning purposes and is not maintained.
  ☆12Dec 28, 2021Updated 4 years ago
• forensicmatt / libtsk-rs

  View on GitHub
  Wrapper for TSK (Sleuth Kit) Bindings
  ☆12Jan 10, 2023Updated 3 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• jipegit / IncidentsMindMaps

  View on GitHub
  Cybersecurity Incidents Mind Maps
  ☆34Sep 29, 2021Updated 4 years ago
• rad9800 / talks

  View on GitHub
  ☆72Mar 8, 2026Updated last month
• omerbenamram / winstructs

  View on GitHub
  Parsers for common structures across windows formats.
  ☆12Aug 23, 2023Updated 2 years ago
• Cyb3rWard0g / infosec-well-done

  View on GitHub
  A few quick recipes for those that do not have much time during the day
  ☆22Oct 28, 2024Updated last year
• fly-apps / terraformed-machines

  View on GitHub
  Example of Fly.io machines orchestration with Terraform and DNSimple
  ☆16Mar 5, 2023Updated 3 years ago
• cudeso / proof-value-cti

  View on GitHub
  Repository documenting how Threat Intelligence and / or a Threat Intelligence Platform can prove its value to an organisation.
  ☆53Oct 23, 2024Updated last year
• refractionPOINT / rules

  View on GitHub
  Public rules and samples for various automations through LimaCharlie.io
  ☆14Dec 16, 2021Updated 4 years ago
• nettitude / PoshC2_IOCs

  View on GitHub
  A list of IOCs applicable to PoshC2
  ☆24Aug 3, 2020Updated 5 years ago
• WithSecureLabs / lazarus-sigma-rules

  View on GitHub
  ☆19Oct 23, 2020Updated 5 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• AbdulRhmanAlfaifi / SDSParser-rs

  View on GitHub
  NTFS Security Descriptor Stream ($Secure:$SDS) parser
  ☆14Jan 9, 2023Updated 3 years ago
• forensicmatt / RustyLnk

  View on GitHub
  LNK to JSON
  ☆14Mar 7, 2019Updated 7 years ago
• watchtowrlabs / CVE-2024-50623

  View on GitHub
  Cleo Unrestricted file upload and download PoC (CVE-2024-50623)
  ☆25Dec 11, 2024Updated last year
• ChiefGyk3D / pfsense-siem-stack

  View on GitHub
  Comprehensive pfSense deployment, monitoring, and security knowledge base: From basic configuration to advanced SIEM infrastructure, IDS/…
  ☆23Mar 29, 2026Updated last week
• NextronSystems / evtx-baseline

  View on GitHub
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆88Mar 11, 2026Updated last month
• BushidoUK / Abused-Legitimate-Services

  View on GitHub
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆60Oct 28, 2022Updated 3 years ago
• eSentire-Labs / surveyor

  View on GitHub
  ☆39Oct 9, 2025Updated 6 months ago
• DidierStevens / AdHoc

  View on GitHub
  AdHoc solutions
  ☆49Aug 29, 2023Updated 2 years ago
• mandiant / thiri-notebook

  View on GitHub
  The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…
  ☆154Apr 25, 2022Updated 3 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• The-DFIR-Report / cyberchef-recipes

  View on GitHub
  ☆21May 8, 2022Updated 3 years ago
• SIFalcon / Detection

  View on GitHub
  ☆23Jul 7, 2023Updated 2 years ago
• theabysslabs / CVE-2022-21881

  View on GitHub
  POC of CVE-2022-21881 exploited at TianfuCup 2021 to escape Chrome Sandbox
  ☆22Aug 9, 2022Updated 3 years ago
• mandiant / win10_auto

  View on GitHub
  ☆24Aug 30, 2019Updated 6 years ago
• NVISOsecurity / nviso-cti

  View on GitHub
  ☆44Jul 11, 2025Updated 9 months ago
• jcreameriii / PAS-APM-Dashboard-Package-for-Splunk

  View on GitHub
  CyberArk Privileged Access Security Application Performance Monitoring Dashboards for Splunk
  ☆40May 20, 2020Updated 5 years ago
• dybdeskarphet / niri-companion

  View on GitHub
  🫂 A toolkit that adds extra functionality to niri
  ☆32Jan 11, 2026Updated 3 months ago