Alternatives and similar repositories for kibune

Users that are interested in kibune are comparing it to the libraries listed below

• shabarkin / pointer
  Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.
  ☆69Updated 3 years ago
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆60Updated 3 years ago
• MHaggis / ShellSweep
  ShellSweeping the evil.
  ☆53Updated last year
• usualsuspect / yara_vt_mock
  Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing
  ☆25Updated 2 years ago
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆74Updated 4 years ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆42Updated 2 years ago
• NVISOsecurity / nviso-cti
  ☆44Updated 7 months ago
• BinaryDefense / beacon-fronting
  A simple command line program to help defender test their detections for network beacon patterns and domain fronting
  ☆70Updated 4 years ago
• RedTeamOperations / Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW
  CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"
  ☆51Updated 3 years ago
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆46Updated 2 months ago
• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆45Updated 2 years ago
• mlgualtieri / PurpleTeamSummit
  ☆28Updated 4 years ago
• matthw / malware_analysis
  ☆18Updated last year
• WesSec / VelociDeploy-o-Matic
  Scripts to for ready-to-use Velociraptor instance deployment in Azure
  ☆14Updated 2 years ago
• eremit4 / cs-discovery
  Detecting Cobalt Strike Team Servers on targets through traffic telemetry.
  ☆22Updated last year
• q0phi80 / Wakanda-Land
  ☆42Updated 3 years ago
• g-les / 100DaysofYARA
  100 Days of YARA to be updated with rules & ideas as the year progresses
  ☆60Updated 3 years ago
• antman1p / freyja
  Freyja is a Golang, Purple Team agent that compiles into Windows, Linux and macOS x64 executables.
  ☆44Updated last year
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆31Updated 3 years ago
• eduardomcm / VelociraptorCompetition
  ☆11Updated 3 years ago
• Droogy / Malware-Study
  A collection of notes and rules (Snort/Suricata, Sigma, and YARA) to identify various samples of malware.
  ☆14Updated 4 years ago
• montysecurity / InfraSpyder
  Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.
  ☆28Updated 2 years ago
• jaredcatkinson / MalwareMorphology
  ☆84Updated last year
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆53Updated 2 years ago
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆54Updated last year
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆78Updated last year
• jorgeorchilles / presentations
  Slides and materials for conference presentations
  ☆11Updated 2 years ago
• tsale / TA_tooling
  ☆10Updated 3 years ago
• ACE-Responder / ace-proctree
  Create a cool process tree like https://twitter.com/ACEResponder.
  ☆35Updated 2 years ago
• MalwareTech / FollinaExtractor
  Extract payload URLs from Follina (CVE-2022-30190) docx and rtf files
  ☆31Updated 3 years ago