Attack Detection
☆1,358Aug 31, 2022Updated 3 years ago
Alternatives and similar repositories for AttackDetection
Users that are interested in AttackDetection are comparing it to the libraries listed below
Sorting:
- Suricata IDS rules 用来检测红队渗透/恶意行为等,支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等☆1,262Jul 8, 2023Updated 2 years ago
- AD Security Intrusion Detection System☆1,320Mar 31, 2023Updated 2 years ago
- 快速搭建各种漏洞环境(Various vulnerability environment)☆3,785Oct 27, 2020Updated 5 years ago
- Source Code Security Audit (源代码安全审计)☆3,186Sep 16, 2022Updated 3 years ago
- 本程序旨在为安全应急响应人员对Linux主机排查时提供便利,实现主机侧Checklist的自动全面化检测,根据检测结果自动数据聚合,进行黑客攻击路径溯源。☆2,807Aug 7, 2022Updated 3 years ago
- Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and ser…☆2,559Updated this week
- 各种漏洞poc、Exp的收集或编写☆2,485Jun 24, 2025Updated 8 months ago
- ssrf、ssrfIntranetFuzz、dnsRebinding、recordEncode、dnsPoisoning、Support ipv4/ipv6☆217Aug 17, 2017Updated 8 years ago
- Vulnerability Labs for security analysis☆1,172Mar 10, 2021Updated 4 years ago
- 被动式漏洞扫描系统☆873Nov 1, 2017Updated 8 years ago
- Windows Events Attack Samples☆2,515Jan 24, 2023Updated 3 years ago
- 红队基础设施自动化部署工具☆852Jan 4, 2023Updated 3 years ago
- 用于辅助安全工程师漏洞挖掘、测试、复现,集合了mock、httplog、dns tools、xss,可用于测试各类无回显、无法直观判断或特定场景下的漏洞。☆866Jul 21, 2019Updated 6 years ago
- By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.☆603Apr 1, 2021Updated 4 years ago
- Indicators of compromise (IOCs) collected from public resources and categorized by Qi-AnXin.☆960Aug 28, 2025Updated 6 months ago
- A collection of pentest and development tips☆1,125May 26, 2022Updated 3 years ago
- 常见的攻击行为监测特征及方法,涵盖端点和流量,未包含PowerShell和Sysmon。预祝运营生活愉快!☆644Jan 18, 2026Updated last month
- QNSM is network security monitoring framework based on DPDK.☆528Sep 27, 2021Updated 4 years ago
- Windows Event Log Killer☆1,810Sep 21, 2023Updated 2 years ago
- BCS(北京网络安全大会)2019 红队行动会议重点内容☆819Sep 4, 2019Updated 6 years ago
- 更快速的进行Web应用指纹识别☆170May 9, 2019Updated 6 years ago
- Utilities for Sysmon☆1,574Sep 21, 2025Updated 5 months ago
- 巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。☆3,596Apr 16, 2024Updated last year
- ✍️ A curated list of CVE PoCs.☆3,475Jan 4, 2022Updated 4 years ago
- YARA signature and IOC database for my scanners and tools☆2,874Feb 5, 2026Updated 3 weeks ago
- 红队作战中比较常遇到的一些重点系统漏洞整理。☆2,522Jul 17, 2021Updated 4 years ago
- Open-Source Security Architecture | 开源安全架构☆944May 10, 2021Updated 4 years ago
- Python2编写的struts2漏洞全版本检测和利用工具☆1,419May 7, 2019Updated 6 years ago
- A toolset to make a system look as if it was the victim of an APT attack☆2,715Sep 23, 2025Updated 5 months ago
- Scirius is a web application for Suricata ruleset management and threat hunting.☆673Dec 23, 2025Updated 2 months ago
- 渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework☆1,953Mar 28, 2022Updated 3 years ago
- GitHub 泄露监控系统(GitHub Sensitive Information Leakage Monitor Spider)☆2,038May 21, 2022Updated 3 years ago
- Suricata, Snort and Zeek IDS rule and pcap testing system☆512Feb 17, 2026Updated last week
- APT & CyberCriminal Campaign Collection☆4,043Jul 25, 2024Updated last year
- a webshell resides in the memory of java web server☆699Jun 26, 2018Updated 7 years ago
- Investigate malicious Windows logon by visualizing and analyzing Windows event log☆3,138Oct 19, 2025Updated 4 months ago
- Nmap&Zmap特征识别,绕过IDS探测☆329Aug 1, 2019Updated 6 years ago
- MS17-010☆2,229Jun 20, 2023Updated 2 years ago
- Small and highly portable detection tests based on MITRE's ATT&CK.☆11,617Updated this week