montysecurity / YaraMonitorLinks
Framework for Monitoring File Ingestion Source for Yara Matches
☆50Updated 10 months ago
Alternatives and similar repositories for YaraMonitor
Users that are interested in YaraMonitor are comparing it to the libraries listed below
Sorting:
- A comprehensive GenAI protection system designed to protect against malicious prompts, injection attacks, and harmful content. System inc…☆95Updated 2 months ago
- Living Off Security Tools☆58Updated last month
- Collection of Docker honeypot logs from 2021 - 2024☆36Updated last year
- Create honeypots for cloud environments☆109Updated 3 months ago
- Rules shared by the community from 100 Days of YARA 2025☆39Updated last week
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆150Updated last year
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆84Updated 3 weeks ago
- ☆18Updated last month
- Tool created for Red Team to test default credentials on SSH and WinRM and then execute scripts with those credentials before the passwor…☆40Updated 2 years ago
- Mapping of open-source detection rules and atomic tests.☆192Updated 11 months ago
- A simple tool designed to create Atomic Red Team tests with ease.☆49Updated 10 months ago
- AutoPwnKey is a red teaming framework and testing tool using AutoHotKey (AHK), which at the time of creation proves to be quite evasive. …☆109Updated 5 months ago
- God Mode Detection Rules☆134Updated last year
- Assortment of scripts and tools for our Blackhat EU 2024 talk☆102Updated 11 months ago
- 🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.☆82Updated 8 months ago
- ☆74Updated this week
- A tool to help pentesters quickly identify privileged principals and second-order privilege escalation opportunities in unfamiliar AWS ac…☆139Updated last month
- An index of publicly available and open-source threat detection rulesets.☆131Updated 8 months ago
- gubble is a tool designed to audit Google Workspace group settings. It analyzes settings such as who can join, view membership, post mess…☆79Updated 7 months ago
- Repository that contains a set of purposefully erroneous Yara rules.☆61Updated 5 months ago
- FT3: Fraud Tools, Tactics, and Techniques Framework☆98Updated 5 months ago
- A Kubernetes Forensic Collection Framework for Azure Kubernetes Service☆39Updated 4 months ago
- ☆82Updated last month
- APT hub, It help's research to collect information and data on the latest APT activities. It collects data on APT profiles, IOCs(1 yr), a…☆53Updated 10 months ago
- Scripts for importing threat feeds and CTI articles, blogs, and reports into MISP.☆18Updated 6 months ago
- Purple-team telemetry & simulation toolkit.☆100Updated 3 weeks ago
- Baseline a Windows System against LOLBAS☆69Updated last year
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆84Updated last year
- JamfHound is a python3 project designed to collect and identify attack paths in Jamf Pro tenants based on existing object permissions by …☆110Updated 4 months ago
- Automation tool for Windows Deception Host Burn-In☆86Updated last year