124 Open source projects that are alternatives of or similar to Flerken

A Web Malware Scanner

The repository contains the python implementation of the Android Malware Detection paper: "Empirical assessment of machine learning-based malware detectors for Android: Measuring the Gap between In-the-Lab and In-the-Wild Validation Scenarios"

E-mails, subdomains and names Harvester - OSINT

Searches online paste sites for certain search terms which can indicate a possible data breach.

A curated list of awesome YARA rules, tools, and people.

Network Scanner with Backdoor Detection, other Nmap resources and syn-protection detection

Scan your code for security misconfiguration, search for passwords and secrets. 🔍

A Lambda-powered Security Orchestration framework for AWS GuardDuty

A collection of electronic hacker magazines carefully curated over the years from multiple sources

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Collection of malware source code for a variety of platforms in an array of different programming languages.

RNN implementation with Keras for machine activity data to predict malware

JSON DataSet for macOS mapped to MITRE ATT&CK Tactics.

Provides various Windows Server Active Directory (AD) security-focused reports.

Bloodhound for Blue and Purple Teams

adversarial examples, adversarial malware examples, adversarial malware detection, adversarial deep ensemble, Android malware variants

BinaryAlert: Serverless, Real-time & Retroactive Malware Detection.

Malice Yara Plugin

FCL (Fileless Command Lines) - Known command lines of fileless malicious executions

ETWNetMonv3 is simple C# code for Monitoring TCP Network Connection via ETW & ETWProcessMon/2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

Anti-Malware for minecraft

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Web Application Secure Coding Handbook resource.

Drebin - NDSS 2014 Re-implementation

Collection of malware persistence and hunting information. Be a persistent persistence hunter!

An open source framework for enterprise level automated analysis.

Utility for hunting UAC bypasses or COM/DLL hijacks that alerts on the exported function that was consumed.

Bi-weekly hunting queries

Anti keylogger, anti screen logger... Strategy to protect with hookings or improve your sandbox with spyware detection... - Demo

bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.

detect trojans by easy way 🛡️

Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android

Anti-malware for Android using machine learning

Binary instrumentation framework based on FRIDA

These are some of the commands which I use frequently during Malware Analysis and DFIR.

ThreatHunt is a PowerShell repository that allows you to train your threat hunting skills.

OSINT Bookmarks for Firefox / Chrome / Edge / Safari

ReversingLabs YARA Rules

Blue Team detection lab created with Terraform and Ansible in Azure.

A Machine Learning approach for classifying a file as Malicious or Legitimate

Hourly updated database of exploit and exploitation reports

ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.

Data leak checker & OSINT Tool

A PowerShell module to deploy active directory decoy objects.

Blue Team Scripts

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

This tool allows one to recover old RDP (mstsc) session information in the form of broken PNG files. These PNG files allows Red Team member to extract juicy information such as LAPS passwords or any sensitive information on the screen. Blue Team member can reconstruct PNG files to see what an attacker did on a compromised host. It is extremely useful for a forensics team to extract timestamps after an attack on a host to collect evidences and perform further analysis.

Submits multiple domains to VirusTotal API

Monitoring your Slack workspaces for sensitive information

Search for Unix binaries that can be exploited to bypass system security restrictions.

Investigate malicious Windows logon by visualizing and analyzing Windows event log

Towards Building an Intelligent Anti-Malware System: A Deep Learning Approach using Support Vector Machine for Malware Classification

This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.

Monitoring GitLab for sensitive data shared publicly

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies

a tool to perform static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers and to monitor the docker daemon and running docker containers for detecting anomalous activities

Bash script to Check for malicious Cryptomining