Alternatives and similar repositories for AttackDetection:

Users that are interested in AttackDetection are comparing it to the libraries listed below

• al0ne / suricata-rules
  Suricata IDS rules 用来检测红队渗透/恶意行为等，支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等
  ☆1,194Updated last year
• nsacyber / Mitigating-Web-Shells
  Guidance for mitigation web shells. #nsacyber
  ☆973Updated last year
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆474Updated 3 months ago
• RedDrip7 / APT_Digital_Weapon
  Indicators of compromise (IOCs) collected from public resources and categorized by Qi-AnXin.
  ☆927Updated 3 weeks ago
• Qianlitp / WatchAD
  AD Security Intrusion Detection System
  ☆1,293Updated 2 years ago
• bdamele / icmpsh
  Simple reverse ICMP shell
  ☆1,574Updated 7 years ago
• DinoTools / dionaea
  Home of the dionaea honeypot
  ☆739Updated 8 months ago
• NextronSystems / APTSimulator
  A toolset to make a system look as if it was the victim of an APT attack
  ☆2,564Updated last year
• nshalabi / ATTACK-Tools
  Utilities for MITRE™ ATT&CK
  ☆1,025Updated 10 months ago
• Neo23x0 / signature-base
  YARA signature and IOC database for my scanners and tools
  ☆2,592Updated this week
• JPCERTCC / LogonTracer
  Investigate malicious Windows logon by visualizing and analyzing Windows event log
  ☆2,875Updated 9 months ago
• vulmon / Vulmap
  Vulmap Online Local Vulnerability Scanners Project
  ☆963Updated 2 years ago
• StamusNetworks / SELKS
  A Suricata based IDS/IPS/NSM distro
  ☆1,525Updated 8 months ago
• Neo23x0 / yarGen
  yarGen is a generator for YARA rules
  ☆1,625Updated last week
• honeytrap / honeytrap
  Advanced Honeypot framework.
  ☆1,246Updated last year
• 0xrawsec / whids
  Open Source EDR for Windows
  ☆1,205Updated 2 years ago
• rsmudge / Malleable-C2-Profiles
  Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable…
  ☆1,528Updated 3 years ago
• Neo23x0 / Loki
  Loki - Simple IOC and YARA Scanner
  ☆3,511Updated 4 months ago
• CyberMonitor / APT_CyberCriminal_Campagin_Collections
  APT & CyberCriminal Campaign Collection
  ☆3,857Updated 8 months ago
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆646Updated 4 months ago
• sensepost / ruler
  A tool to abuse Exchange services
  ☆2,220Updated 10 months ago
• 3gstudent / Pentest-and-Development-Tips
  A collection of pentest and development tips
  ☆1,107Updated 2 years ago
• bfuzzy / auditd-attack
  A Linux Auditd rule set mapped to MITRE's Attack Framework
  ☆787Updated 4 years ago
• tomchop / malcom
  Malcom - Malware Communications Analyzer
  ☆1,158Updated 7 years ago
• api0cradle / LOLBAS
  Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
  ☆1,602Updated 6 years ago
• Yara-Rules / rules
  Repository of yara rules
  ☆4,346Updated last year
• tenable / poc
  Proof of Concepts
  ☆1,251Updated 5 months ago
• aptnotes / data
  APTnotes data
  ☆1,693Updated 4 months ago
• activecm / rita-legacy
  Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…
  ☆2,508Updated 9 months ago
• nccgroup / Cyber-Defence
  Information released publicly by NCC Group's Cyber Incident Response Team
  ☆476Updated 3 years ago