☆1,283Jul 13, 2023Updated 2 years ago
Alternatives and similar repositories for jarm
Users that are interested in jarm are comparing it to the libraries listed below
Sorting:
- A list of JARM hashes for different ssl implementations used by some C2/red team tools.☆144Apr 20, 2023Updated 2 years ago
- JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.☆3,072May 1, 2025Updated 10 months ago
- ☆451Aug 4, 2021Updated 4 years ago
- A Go implementation of JARM☆119Jun 14, 2022Updated 3 years ago
- HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints…☆545May 1, 2025Updated 10 months ago
- ☆1,131Dec 19, 2023Updated 2 years ago
- Scan files or process memory for CobaltStrike beacons and parse their configuration☆922Aug 19, 2021Updated 4 years ago
- Defences against Cobalt Strike☆1,296Jul 14, 2022Updated 3 years ago
- Code and yara rules to detect and analyze Cobalt Strike☆272May 5, 2021Updated 4 years ago
- YARA signature and IOC database for my scanners and tools☆2,874Feb 5, 2026Updated 3 weeks ago
- The FLARE team's open-source tool to identify capabilities in executable files.☆5,844Updated this week
- Re-play Security Events☆1,723Mar 20, 2024Updated last year
- Main Sigma Rule Repository☆10,156Updated this week
- pyJARM is a library for doing JARM fingerprinting using python☆50Mar 23, 2025Updated 11 months ago
- Interesting APT Report Collection And Some Special IOCs☆2,915Feb 24, 2026Updated last week
- Detect Tactics, Techniques & Combat Threats☆2,264Jan 21, 2026Updated last month
- Adversary Emulation Framework☆10,759Updated this week
- JA4+ is a suite of network fingerprinting standards☆1,774Feb 17, 2026Updated 2 weeks ago
- ☆2,665Mar 5, 2024Updated last year
- Hunts out CobaltStrike beacons and logs operator command output☆950Sep 4, 2024Updated last year
- Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing…☆1,727Jan 16, 2026Updated last month
- Malwoverview is a rapid response tool used to gather intelligence information from VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malsh…☆3,547Jan 20, 2026Updated last month
- Fast Application Layer Scanner☆2,072Feb 24, 2026Updated last week
- Small and highly portable detection tests based on MITRE's ATT&CK.☆11,632Updated this week
- Practice Go programming and implement CobaltStrike's Beacon in Go☆1,262Oct 2, 2020Updated 5 years ago
- Elastic Security detection content for Endpoint☆1,380Updated this week
- ScareCrow - Payload creation framework designed around EDR bypass.☆2,874Aug 18, 2023Updated 2 years ago
- Automated Adversary Emulation Platform☆6,781Updated this week
- DeimosC2 is a Golang command and control framework for post-exploitation.☆1,151Apr 17, 2025Updated 10 months ago
- YARA malware query accelerator (web frontend)☆437Feb 3, 2026Updated last month
- Six Degrees of Domain Admin☆10,540Aug 1, 2025Updated 7 months ago
- A toolset to make a system look as if it was the victim of an APT attack☆2,715Sep 23, 2025Updated 5 months ago
- Covenant is a collaborative .NET C2 framework for red teamers.☆4,620Jul 18, 2024Updated last year
- Windows Events Attack Samples☆2,515Jan 24, 2023Updated 3 years ago
- Detect and respond to Cobalt Strike beacons using ETW.☆516Jul 15, 2022Updated 3 years ago
- A query aggregator for OSINT based threat hunting☆930Jan 23, 2026Updated last month
- This project aims to compare and evaluate the telemetry of various EDR products.☆1,930Jan 20, 2026Updated last month
- Automate the creation of a lab environment complete with security tooling and logging best practices☆4,908Jul 6, 2024Updated last year
- A post exploitation framework designed to operate covertly on heavily monitored environments☆2,168Sep 29, 2021Updated 4 years ago