DECeption with Evaluative Integrated Validation Engine (DECEIVE): Let an LLM do all the hard honeypot work!
☆283Jun 13, 2025Updated 10 months ago
Alternatives and similar repositories for DECEIVE
Users that are interested in DECEIVE are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Galah: An LLM-powered web honeypot.☆644Jul 24, 2025Updated 9 months ago
- TIM is a Kusto investigation platform that enables a user to quickly pivot between data sources; annotate their findings; and promotes co…☆23Aug 7, 2024Updated last year
- Interactive, dynamic, and realistic LLM honeypots☆76Feb 18, 2025Updated last year
- Sandbox samples and monitor them with kunai☆30Mar 3, 2026Updated 2 months ago
- A community-driven repository for threat hunting ideas, methodologies, and research that serves as a central gathering place for hunters …☆314Apr 29, 2026Updated last week
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆20Apr 10, 2025Updated last year
- Scripts for importing threat feeds and CTI articles, blogs, and reports into MISP.☆18Jun 16, 2025Updated 10 months ago
- An Aggressor Script that utilizes NtCreateUserProcess to run binaries☆31Jan 30, 2025Updated last year
- This project aims to compare and evaluate the telemetry of various EDR products.☆1,951Apr 28, 2026Updated last week
- gpoParser is a tool designed to extract and analyze configurations applied through Group Policy Objects (GPOs) in an Active Directory env…☆353Apr 28, 2026Updated last week
- An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…☆166Oct 9, 2024Updated last year
- Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"☆11Feb 6, 2025Updated last year
- A New Exploitation Technique for Visual Studio Projects☆13Nov 5, 2023Updated 2 years ago
- Framework for Monitoring File Ingestion Source for Yara Matches☆52Mar 10, 2025Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- ☆778May 7, 2025Updated last year
- Turn any blog into structured threat intelligence.☆57Apr 22, 2026Updated 2 weeks ago
- A Large Action Model designed to operate on MacOS or Windows which interacts with common C2 interfaces such as Cobalt Strike, Havoc, or B…☆26Feb 29, 2024Updated 2 years ago
- ☆34Apr 29, 2026Updated last week
- A not so awesome list of adversary emulation gems for aspiring red/blue/purple teamers☆16Jul 19, 2022Updated 3 years ago
- A python script for smart lightbulbs to show how badly you're losing money☆38Apr 28, 2025Updated last year
- NoDelete is a tool that assists in malware analysis by locking a folder where malware drops files before deleting them.☆49Nov 17, 2025Updated 5 months ago
- Threat-hunting tool for Linux☆1,057Updated this week
- BOF to decrypt Signal Desktop chat logs☆70Feb 20, 2025Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- CyberShield 2025 Intro to EDR Evasion Class☆18Jun 3, 2025Updated 11 months ago
- An ADCS honeypot to catch attackers in your internal network.☆327Jun 27, 2024Updated last year
- TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and …☆400Jan 23, 2025Updated last year
- A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID☆587Updated this week
- Hundred Days of Yara Challenge☆12Jun 21, 2022Updated 3 years ago
- Windows Defender Manager is a tool that helps stop Windows Defender. It works with the Antimalware Service Executable of all versions of …☆44Jan 18, 2025Updated last year
- Backend development stack for agents☆29Jul 30, 2025Updated 9 months ago
- Quick ESXi Log Parser☆31Oct 20, 2025Updated 6 months ago
- Repo for experimenting and testing MCP server builds for CTI-related research.☆27May 13, 2025Updated 11 months ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Active C&C Detector☆156Oct 5, 2023Updated 2 years ago
- MasterParser is a powerful DFIR tool designed for analyzing and parsing Linux logs☆759Feb 1, 2026Updated 3 months ago
- Finding ClickFix and FakeCAPTCHA like it's 1999☆136Updated this week
- Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.☆199Nov 5, 2025Updated 6 months ago
- Examine Chrome extensions for security issues☆96Nov 16, 2025Updated 5 months ago
- CVE-2025-1974☆90Apr 2, 2025Updated last year
- ☆59Dec 10, 2025Updated 4 months ago