Alternatives and similar repositories for unica_mlsec_labs

Users that are interested in unica_mlsec_labs are comparing it to the libraries listed below

• fkie-cad / amides
  An Adaptive Misuse Detection System
  ☆43Updated 9 months ago
• lucky-luk3 / Infosec_Notebooks
  ☆20Updated 2 years ago
• fox-it / cobaltstrike-beacon-data
  Open Dataset of Cobalt Strike Beacon metadata (2018-2022)
  ☆125Updated 3 years ago
• woanware / etw-event-dumper
  ☆33Updated 3 years ago
• elastic / siglearn
  Code for BH21 talk: "Generating YARA Rules by Classifying Malicious Byte Sequences"
  ☆17Updated 6 months ago
• Cyb3rWard0g / HF-Agents-Course-Notes
  My Notes from Hugging Face AI Agents Course
  ☆14Updated 5 months ago
• intelliroot-tech / InjectedCodeHunter
  “Intelliroot Code Injection Hunter” is a tool that can to help you identify injected malicious code. The tool can identify and extract po…
  ☆15Updated 2 years ago
• jonny-jhnson / Detecting-Process-Injection-Techniques
  This is a repository that is meant to hold detections for various process injection techniques.
  ☆34Updated 5 years ago
• aiforsec22 / IEEEEuroSP23
  ☆25Updated 2 years ago
• Cyb3r-Monk / ACCD
  Active C&C Detector
  ☆155Updated last year
• MHaggis / ShellSweep
  ShellSweeping the evil.
  ☆53Updated last year
• tsale / TA_tooling
  ☆10Updated 2 years ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆42Updated last year
• Immersive-Labs-Sec / BruteRatel-DetectionTools
  A collection of Tools and Rules for decoding Brute Ratel C4 badgers
  ☆64Updated 3 years ago
• NextronSystems / evtx-baseline
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆80Updated 2 months ago
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆89Updated 11 months ago
• matterpreter / FindETWProviderImage
  Quickly search for references to a GUID in DLLs, EXEs, and drivers
  ☆74Updated 3 years ago
• FutureComputing4AI / ClarAVy
  ☆35Updated 2 months ago
• dfir-ronin / APT-OpenIOC-Detection-Rules
  This repository contains OpenIOC rules to aid in hunting for indicators of compromise and TTPs focused on Advanced Persistent Threat grou…
  ☆25Updated last year
• QueenSquishy / plague
  Default Detections for EDR
  ☆96Updated last year
• ACE-Responder / ace-proctree
  Create a cool process tree like https://twitter.com/ACEResponder.
  ☆35Updated 2 years ago
• SecurityRiskAdvisors / dredd
  Automated detection rule analysis utility
  ☆29Updated 2 years ago
• fkie-cad / yapscan
  Yapscan is a YAra based Process SCANner, aimed at giving more control about what to scan and giving detailed reports on matches.
  ☆61Updated 2 years ago
• moohax / malwareGPT
  ☆15Updated 2 years ago
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆96Updated 2 years ago
• thremulation-station / thremulation-station
  Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.
  ☆38Updated last year
• CoDS-GCS / MEGR-APT-code
  MEGR-APT: A Memory-Efficient APT Hunting System Based on Attack Representation Learning
  ☆49Updated 3 months ago
• mlgualtieri / PurpleTeamSummit
  ☆27Updated 4 years ago
• 0xThiebaut / PCAPeek
  A proof-of-concept re-assembler for reverse VNC traffic.
  ☆25Updated 2 years ago