581 Open source projects that are alternatives of or similar to Rpot

IoC's, PCRE's, YARA's etc

Windows paravirtualized

hvpp is a lightweight Intel x64/VT-x hypervisor written in C++ focused primarily on virtualization of already running operating system

Collection of almost 40.000 javascript malware samples

Investigation Planner for fast running analysis with predictable execution time. For example, static analysis.

Whonix is an operating system focused on anonymity, privacy and security. It's based on the Tor anonymity network, Debian GNU/Linux and security by isolation. DNS leaks are impossible, and not even malware with root privileges can find out the user's real IP. https://www.whonix.org

A Splunk app mapped to MITRE ATT&CK to guide your threat hunts

Docker host and container monitoring, logging and alerting out of the box using cAdvisor, Prometheus, Grafana for monitoring, Elasticsearch, Kibana and Logstash for logging and elastalert and Alertmanager for alerting.

Operation Wocao - Indicators of Compromise

PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.

A curated list of awesome neuroscience libraries, software and any content related to the domain.

A minimal, resource efficient unikernel for cloud services

Utilities for Sysmon

WinDBG Anti-RootKit Extension

A static analyzer for PE executables.

React components for efficiently rendering large lists and tabular data

An extendable, tabbed, dockable UI widget plugin for BinaryNinja https://binary.ninja.

搭建ELK日志分析平台。

The PE file analysis toolkit

Terraform provider to provision infrastructure with Linux's KVM using libvirt

OCI (Open Containers Initiative) compatible runtime for Intel® Architecture

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

FCL (Fileless Command Lines) - Known command lines of fileless malicious executions

Modern Hypervisor for the Cloud

A pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis

FAME Automates Malware Evaluation

2018年本科毕设项目，已更新所有开发和部署文档。基于Dubbo、SSM、Shiro、ELK、ActiveMQ、Redis等实现的一套高可用、高性能、高可扩展的分布式系统架构，实现可支持业务的基础公共服务,API使用Restful风格对外暴露。已经实现的包括：发送邮件服务、FastDFS文件存储服务、ELK实时日志查询服务、Redis缓存服务、Mybatis数据库、阿里短信推送、Goeasy消息推送、Druid监控、ActiveMQ消息队列、shiro权限认证、cas单点登录、权限配置web系统、移动端后台系统。持续更新中......

The educational Animus malware

Sample Docker Swarm cluster stack of tools

A Linux Auditd rule set mapped to MITRE's Attack Framework

SpringCloud 微服务综合实例。分布式配置中心，服务发现&负载均衡，链路断路器，API网关，OAuth2认证授权，分布式追踪，ELK日志中心，Ansible/Docker持续交付等最佳实践。

Allows OpenNebula to manage Linux Containers via LXD

The Python interface for YARA

DRAKVUF Black-box Binary Analysis

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

HIS英文全称 hospital information system（医院信息系统http://59.110.234.89:9999/swagger-ui.html ），医疗信息就诊系统，系统主要功能按照数据流量、流向及处理过程分为临床诊疗、药品管理、财务管理、患者管理。诊疗活动由各工作站配合完成，并将临床信息进行整理、处理、汇总、统计、分析等。本系统包括以下工作站：门诊医生工作站、药房医生工作站、医技医生工作站、收费员工作站、对帐员工作站、管理员工作站。需求为东软提供的云医院。

A map displaying threat actors from the misp-galaxy

Kubernetes CRI implementation for running VM workloads

The complete web solution to manage and backup XCP-ng and Citrix Hypervisor.

Graphene / Graphene-SGX - a library OS for Linux multi-process applications, with Intel SGX support

Sandbox for semi-automatic Javascript malware analysis, deobfuscation and payload extraction. Written for Node.js

Docker configuration for ELK monitoring stack with Curator and Beats data shippers support

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

🐳 Elastic Stack (ELK) on Docker, with preconfigured Security, Tools, Self-Monitoring, and Prometheus Metrics. Up with a Single Command.

IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.

🔎 shodansploit > v1.3.0

WinAppDbg Debugger

vSphere Integrated Containers Engine is a container runtime for vSphere.

Extensible log shipper with input/output plugins, buffering, parsing, data masking, and small memory/CPU footprint

🔀 Neural Network (NN) Streamer, Stream Processing Paradigm for Neural Network Apps/Devices.

Very simplified shop sales system made in a microservices architecture using quarkus

OCI (Open Containers Initiative) compatible runtime using Virtual Machines

Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.

16,432 Free Yara rules created by

Docker Compose for Elasticsearch and Kibana

Hamburglar -- collect useful information from urls, directories, and files

Enable enthusiasts and administrators alike to easily provision highly available and production-ready Kubernetes clusters on Proxmox VE.

Indicators of Compromises (IOC) of our various investigations

Please no pull requests for this repository. Thanks!

Contains all of the queries used within the Complete Guide to Elasticsearch course.