ptresearch / AttackDetectionLinks
Attack Detection
☆1,362Updated 3 years ago
Alternatives and similar repositories for AttackDetection
Users that are interested in AttackDetection are comparing it to the libraries listed below
Sorting:
- Indicators of compromise (IOCs) collected from public resources and categorized by Qi-AnXin.☆950Updated last month
- Guidance for mitigation web shells. #nsacyber☆981Updated 2 years ago
- Suricata IDS rules 用来检测红队渗透/恶意行为等,支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等☆1,238Updated 2 years ago
- Suricata, Snort and Zeek IDS rule and pcap testing system☆498Updated 2 weeks ago
- AD Security Intrusion Detection System☆1,314Updated 2 years ago
- Utilities for MITRE™ ATT&CK☆1,040Updated 2 weeks ago
- ☆714Updated 2 years ago
- Vulmap Online Local Vulnerability Scanners Project☆970Updated 2 years ago
- Scirius is a web application for Suricata ruleset management and threat hunting.☆667Updated 3 weeks ago
- Interesting APT Report Collection And Some Special IOCs☆2,682Updated this week
- Home of the dionaea honeypot☆775Updated last year
- By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.☆604Updated 4 years ago
- Investigate malicious Windows logon by visualizing and analyzing Windows event log☆2,999Updated last month
- Some results of my DGA reversing efforts☆676Updated last week
- The tool for updating your Suricata rules.☆280Updated this week
- Utilities for Sysmon☆1,550Updated 2 weeks ago
- APTnotes data☆1,750Updated 9 months ago
- A Linux Auditd rule set mapped to MITRE's Attack Framework☆811Updated 5 years ago
- Mirror of https://github.com/zeek/zeek☆176Updated 2 years ago
- 威胁情报,恶意样本分析,开源Malware代码收集☆346Updated 5 years ago
- A Suricata based NDR distribution☆1,569Updated 3 weeks ago
- A collection of pentest and development tips☆1,122Updated 3 years ago
- Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…☆1,570Updated 4 years ago
- Open Source EDR for Windows☆1,275Updated 2 years ago
- ☆483Updated 3 years ago
- Indicators from Unit 42 Public Reports☆724Updated last month
- YARA signature and IOC database for my scanners and tools☆2,749Updated last week
- APT & CyberCriminal Campaign Collection☆3,983Updated last year
- A Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.☆485Updated 4 years ago
- 常见的攻击行为监测特征及方法,涵盖端点和流量,未包含PowerShell和Sysmon。预祝运营生活愉快!☆640Updated 3 months ago