west-wind / Spring4Shell-DetectionLinks
Lazy SPL to detect Spring4Shell exploitation
☆12Updated 3 years ago
Alternatives and similar repositories for Spring4Shell-Detection
Users that are interested in Spring4Shell-Detection are comparing it to the libraries listed below
Sorting:
- Quick & Dirty DFIR scripts developed by Ebryx DFIR team to keep handy during field assignment☆14Updated last month
- An npm package for extracting common IoC (Indicator of Compromise) from a block of text☆59Updated 4 months ago
- ☆15Updated 7 years ago
- Powershell Scripts to work on Crowdstrike Falcon that pull back raw data relevant to forensic investigation☆23Updated last year
- ☆14Updated 5 years ago
- A collection of searches, interesting events and tables on Crowdstrike Splunk.☆30Updated 4 years ago
- Quick lookup files for SUNBURST Backdoor☆12Updated 5 years ago
- Rhaegal is a tool written in Python 3 used to scan Windows Event Logs for suspicious logs. Rhaegal uses custom rule format to detect sus…☆42Updated 2 years ago
- Tool for quickly gathering information from Shodan.io about the number of IPs which satisfy large number of different queries☆52Updated 3 years ago
- Defcon 28 - Red Team Village - Applied Purple Teaming - Why Can't We Be Friends☆26Updated 5 years ago
- Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility.☆34Updated 3 years ago
- A python script to acquire multiple aws ec2 instances in a forensically sound-ish way☆38Updated 4 years ago
- An experimental Velociraptor implementation using cloud infrastructure☆26Updated 2 months ago
- Domain Connectivity Analysis Tools to analyze aggregate connectivity patterns across a set of domains during security investigations☆46Updated 4 years ago
- PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…☆93Updated 4 years ago
- ☆21Updated 4 years ago
- A tool to automate memory dump processing using Volatility, including optional Splunk integration.☆12Updated 5 years ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆36Updated 4 years ago
- Automatic Sender Policy Framework Reconnaissance☆19Updated 7 years ago
- A preconfigured Windows-based system designed for rapid forensic investigations in both Azure and AWS.☆40Updated last year
- Python command line tool used for generating GIAC Certification indexes.☆29Updated 2 years ago
- A tool to modify timestamps in a packet capture to a user selected date☆31Updated 4 years ago
- Small enough to carry on your back (Backpack) 🎒💻☆32Updated 2 years ago
- A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments☆65Updated 4 years ago
- ☆33Updated 3 years ago
- URL fingerprinting made easy☆90Updated last year
- A script to assist in processing forensic RAM captures for malware triage☆26Updated 5 years ago
- A triage data collection script for macOS☆28Updated 5 years ago
- Virtual Security Operations Center☆52Updated 2 years ago
- Create alerts in The Hive from your Graylog alerts, to be turned into Hive cases.☆45Updated 5 years ago