sgInnora / sharpeyeLinks
SharpEye: Advanced Linux Intrusion Detection and Threat Hunting System
☆170Updated this week
Alternatives and similar repositories for sharpeye
Users that are interested in sharpeye are comparing it to the libraries listed below
Sorting:
- Modern honeypot supporting multiple services, realistic website cloning, and AI-powered features☆157Updated last month
- A repository of credential stealer formats☆239Updated 7 months ago
- DECeption with Evaluative Integrated Validation Engine (DECEIVE): Let an LLM do all the hard honeypot work!☆274Updated 7 months ago
- Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.☆197Updated 2 months ago
- An index of publicly available and open-source threat detection rulesets.☆131Updated 9 months ago
- A simple application that extracts your IoCs from garbage input and checks their reputation using multiple CTI services.☆493Updated last week
- Mapping of open-source detection rules and atomic tests.☆193Updated last year
- CRADLE is a collaborative platform for Cyber Threat Intelligence analysts. It streamlines threat investigations with integrated note-taki…☆337Updated this week
- Analyze pcaps with Zeek and a Grafana Dashboard☆189Updated last year
- Cyber threat intelligence tool suite.☆42Updated 9 months ago
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆151Updated last year
- Automation tool for Windows Deception Host Burn-In☆86Updated last year
- Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.☆164Updated last month
- 🐍 High-performance, multi-threaded YARA & IOC scanner☆236Updated this week
- AI-powered cybersecurity attack flow visualization tool using MITRE ATT&CK☆194Updated 2 months ago
- A collection of methods to learn who the owner of an IP address is.☆224Updated 3 months ago
- A security analysis tool that identifies DNS queries made by browser extensions, empowering security teams to detect and investigate susp…☆185Updated 11 months ago
- Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports☆147Updated this week
- CyberSecurity BLUE TEAM containerized platform that brings together open-source tools for SIEM, DFIR, CTI, SOAR, and Network Analysis☆442Updated 3 months ago
- Framework for Monitoring File Ingestion Source for Yara Matches☆50Updated 10 months ago
- Deep Linux runtime visibility meets Wireshark☆302Updated 2 months ago
- Knowledge base on cybercriminal concealment techniques☆92Updated 8 months ago
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆501Updated 3 weeks ago
- A comprehensive GenAI protection system designed to protect against malicious prompts, injection attacks, and harmful content. System inc…☆95Updated 3 months ago
- RequestShield is a 100% Free and OpenSource tool designed to analyze HTTP access.logs and identify suspicious HTTP requests and potential…☆106Updated last year
- AutoPwnKey is a red teaming framework and testing tool using AutoHotKey (AHK), which at the time of creation proves to be quite evasive. …☆109Updated 6 months ago
- Inboxfuscation is an advanced offensive & defensive framework for mailbox rule obfuscation and detection in Exchange environments.☆79Updated 4 months ago
- A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…☆180Updated 7 months ago
- A collection of CVEs weaponized by ransomware operators☆129Updated 3 months ago
- This is the repository for indicators of compromise (IOCs) and other data for threat intelligence articles posted on the Palo Alto Networ…☆111Updated 2 months ago