This repository contains a set of rules samples that can be directly used with Trellix Endpoint Security, in the Exploit Prevention policy.
☆33Jun 3, 2026Updated this week
Alternatives and similar repositories for ExpertRules
Users that are interested in ExpertRules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Collection of various MVISION EDR Integration Scripts☆32Dec 12, 2022Updated 3 years ago
- Practical Orientation Of MVISION EDR Query Language☆35Feb 10, 2023Updated 3 years ago
- Block abused TLDs in Tenant Allow BlockList☆15Updated this week
- Zac's assorted config files☆10Jan 11, 2017Updated 9 years ago
- Fork of ligolo-ng with exec and service capability☆16Oct 30, 2023Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ☆43May 17, 2026Updated 3 weeks ago
- A tool designed to detect the vulnerability **CVE-2025-31650** in Apache Tomcat (versions 10.1.10 to 10.1.39)☆20Apr 30, 2025Updated last year
- ☆48Nov 3, 2023Updated 2 years ago
- Threat Hunting queries of multiple platforms☆71Apr 30, 2026Updated last month
- Miscellaneous IDA scripts and projects☆15Apr 14, 2021Updated 5 years ago
- FakeToaGo☆13Dec 28, 2023Updated 2 years ago
- SysFlow project APIs☆16Jun 5, 2024Updated 2 years ago
- Rewrapping FieryIceStickie's Deobfuscation Tools☆11May 1, 2026Updated last month
- Tools and scripts to deploy and manage OpenRelik instances☆17Mar 23, 2026Updated 2 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- INACTIVE - http://mzl.la/ghe-archive - Participation infrastructure playbooks☆15Jul 15, 2019Updated 6 years ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆13Sep 30, 2022Updated 3 years ago
- The STiki anti-damage tool for wikis/Wikipedia☆22Dec 10, 2018Updated 7 years ago
- RDP Credential Provider☆13Oct 29, 2025Updated 7 months ago
- Disk Image Mounting Script☆11Jan 22, 2026Updated 4 months ago
- Git scrapers for scraping the fediverse☆22Jun 3, 2026Updated last week
- Medusa combo files, Hashcat rules and dictionaries, JRT rules☆14Oct 20, 2022Updated 3 years ago
- pocket guide for core detection engineering concepts☆31May 8, 2023Updated 3 years ago
- Linux #rootkit and #malware revealer☆31Aug 1, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Better twitterbots for all your friends~alive and polling☆12Jun 21, 2021Updated 4 years ago
- Thor Artifacts for Velociraptor☆19Dec 2, 2025Updated 6 months ago
- Forensic Artifact Collection Tool Matrix☆96Nov 9, 2024Updated last year
- Scripts to for ready-to-use Velociraptor instance deployment in Azure☆14Jun 27, 2023Updated 2 years ago
- Living Off the Foreign Land setup scripts☆75Feb 26, 2025Updated last year
- ☆12Mar 28, 2026Updated 2 months ago
- NSRL BloomFilter, Mandiant BloomFilter, Hyperloglog Malware Data Structure☆15Mar 14, 2014Updated 12 years ago
- Detection for CVE-2025-61675, CVE-2025-61678 & CVE-2025-66039☆47Dec 15, 2025Updated 5 months ago
- A tool to do basic fingerprinting across a large number of hosts☆11Oct 20, 2020Updated 5 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- ☆11Jun 12, 2023Updated 2 years ago
- Go Shellcode Loader to be Integrated in Exploration C2☆27Feb 7, 2025Updated last year
- TheHiveIRPlaybook is a collection of TheHive case templates used for Incident Response☆13Jul 13, 2020Updated 5 years ago
- This is a repository for the public blog with Labs indicators of compromise and code☆18Jan 8, 2020Updated 6 years ago
- An Inofficial Sysmon Version History (Change Log)☆33Oct 25, 2020Updated 5 years ago
- Scraping darknet forums has been the object of research in the field of intelligence and security informatics. In this repository we scr…☆11May 18, 2023Updated 3 years ago
- A node utility to scan a domain with various techniques.☆12Sep 10, 2020Updated 5 years ago