667 Open source projects that are alternatives of or similar to Macos Attack Dataset

PCAP Samples for Different Post Exploitation Techniques

ETWNetMonv3 is simple C# code for Monitoring TCP Network Connection via ETW & ETWProcessMon/2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

A Splunk app mapped to MITRE ATT&CK to guide your threat hunts

Set of SIGMA rules (>250) mapped to MITRE Att@k tactic and techniques

The Hunting ELK

Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.

Recon Hunt Queries

ETWProcessMon2 is for Monitoring Process/Thread/Memory/Imageloads/TCPIP via ETW + Detection for Remote-Thread-Injection & Payload Detection by VirtualMemAlloc Events (in-memory) etc.

Threat Hunting with ELK Workshop (InfoSecWorld 2017)

Windows Events Attack Samples

Test Blue Team detections without running any attack.

#ThreatHunting #DFIR #Malware #Detection Mind Maps

A repository of sysmon configuration modules

A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework

Searches online paste sites for certain search terms which can indicate a possible data breach.

ThreatHunt is a PowerShell repository that allows you to train your threat hunting skills.

A Linux Auditd rule set mapped to MITRE's Attack Framework

S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator

An Active Defense and EDR software to empower Blue Teams

A curated list of awesome threat detection and hunting resources

Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings

Elastic Service for Ambari

EQTransformer, a python package for earthquake signal detection and phase picking using AI.

OverlayController easily pop your custom view and provide optional transition animation. written in swift 5.0

Set of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.

An Embedded Computer Vision & Machine Learning Library (CPU Optimized & IoT Capable)

BGP Hijack Detection

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant yara rules and ids signatures to detect these indicators.

The purpose of this tutorial is to learn how to install and prepare TensorFlow framework to train your own convolutional neural network object detection classifier for multiple objects, starting from scratch

syslog-ng is an enhanced log daemon, supporting a wide range of input and output methods: syslog, unstructured text, queueing, SQL & NoSQL.

Elastic APM Client for Laravel

Monitor your Spring Boot application with the Elastic Stack all around

PatrowlHears - Vulnerability Intelligence Center / Exploits

开源人脸口罩检测模型和数据 Detect faces and determine whether people are wearing mask.

Extension for Elastic Scout Driver

ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabilities via .NET's DLR.

Help you pop up custom views easily. and support pop-up animation, layout position, mask effect and gesture interaction etc.

Yet another yolov5, with its runtime stack for libtorch, onnx, tvm and specialized accelerators. You like torchvision's retinanet? You like yolov5? You love yolort!

Receptive Field Block Net for Accurate and Fast Object Detection, ECCV 2018

🔍 Mindmaps for threat hunting - work in progress.

SSD: Single Shot MultiBox Detector pytorch implementation focusing on simplicity

Caffe models (including classification, detection and segmentation) and deploy files for famouse networks

Hand gesture recognition and segmentation

Security control framework mappings to MITRE ATT&CK provide a critically important resource for organizations to assess their security control coverage against real-world threats and provide a bridge for integrating ATT&CK-based threat information into the risk management process.

Cross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.

A toolkit for Security Researchers

A framework for secure and scalable network traffic analysis - https://netcap.io

Real-time HTTP Intrusion Detection

[ECCV 2018] CCPD: a diverse and well-annotated dataset for license plate detection and recognition

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

《深度学习与计算机视觉》配套代码

Table Detection and Extraction Using Deep Learning ( It is built in Python, using Luminoth, TensorFlow<2.0 and Sonnet.)

A curated list of awesome YARA rules, tools, and people.

python3写的综合扫描工具，主要用来存活验证，敏感文件探测(目录扫描/js泄露接口/html注释泄露)，WAF/CDN识别，端口扫描，指纹/服务识别，操作系统识别，POC扫描，SQL注入，绕过CDN，查询旁站等功能，主要用来甲方自测或乙方授权测试，请勿用来搞破坏。

A simple way for detection the remote user's antivirus

YOLOv2 in PyTorch

Kibana Alert & Report App for Elasticsearch