salesforce / jarmLinks
☆1,249Updated 2 years ago
Alternatives and similar repositories for jarm
Users that are interested in jarm are comparing it to the libraries listed below
Sorting:
- JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.☆2,980Updated 3 months ago
- Warning lists to inform users of MISP about potential false-positives or other information in indicators☆583Updated last week
- HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints…☆542Updated 3 months ago
- Guidance for mitigation web shells. #nsacyber☆985Updated 2 years ago
- JA4+ is a suite of network fingerprinting standards☆1,444Updated 3 weeks ago
- YARA signature and IOC database for my scanners and tools☆2,726Updated this week
- Fast Application Layer Scanner☆1,939Updated last week
- A utility to safely generate malicious network traffic patterns and evaluate controls.☆1,320Updated last year
- Data exfiltration over DNS request covert channel☆871Updated last year
- A list of cyber-chef recipes and curated links☆2,130Updated last year
- Elastic Security detection content for Endpoint☆1,271Updated this week
- Automatically created C2 Feeds☆637Updated this week
- Python library for connecting to CertStream☆454Updated last year
- VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities a…☆1,502Updated last month
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆2,514Updated last year
- An Active Defense and EDR software to empower Blue Teams☆1,292Updated 2 years ago
- Detect Tactics, Techniques & Combat Threats☆2,197Updated last month
- A set of Zeek scripts to detect ATT&CK techniques.☆602Updated last year
- yarGen is a generator for YARA rules☆1,693Updated 4 months ago
- ReversingLabs YARA Rules☆843Updated this week
- Defences against Cobalt Strike☆1,292Updated 3 years ago
- Extract and aggregate threat intelligence.☆880Updated last year
- Open Source EDR for Windows☆1,273Updated 2 years ago
- Sophos-originated indicators-of-compromise from published reports☆627Updated 3 weeks ago
- Re-play Security Events☆1,669Updated last year
- Repository of YARA rules made by Trellix ATR Team☆609Updated 5 months ago
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆2,201Updated this week
- Real-time, container-based file scanning at enterprise scale☆942Updated 3 weeks ago
- APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the …☆1,366Updated 9 months ago
- ☆548Updated last year