Judge-Jury-and-ExecutableA file system forensics analysis scanner and threat hunting tool. Scans file systems at the MFT and OS level and stores data in SQL, SQLite or CSV. Threats and data can be probed harnessing the power and syntax of SQL.
Stars: ✭ 66 (+164%)
promtail-clientPromtail client library. Promtail is an agent for Loki logging system.
Stars: ✭ 40 (+60%)
loki-multi-tenant-proxyGrafana Loki multi-tenant Proxy. Needed to deploy Grafana Loki in a multi-tenant way
Stars: ✭ 48 (+92%)
yara-validatorValidates yara rules and tries to repair the broken ones.
Stars: ✭ 37 (+48%)
YaraSharpC# wrapper around the Yara pattern matching library
Stars: ✭ 29 (+16%)
Loki.RatLoki.Rat is a fork of the Ares RAT, it integrates new modules, like recording , lockscreen , and locate options. Loki.Rat is a Python Remote Access Tool.
Stars: ✭ 63 (+152%)
paStashpastaʃ'ʃ = Spaghetti I/O Event Data Processing, Interpolation, Correlation and beyond 🍝
Stars: ✭ 89 (+256%)
gimlet-stackBootstrap curated Kubernetes stacks. Logging, metrics, ingress and more - delivered with gitops.
Stars: ✭ 12 (-52%)
yara-forensicsSet of Yara rules for finding files using magics headers
Stars: ✭ 115 (+360%)
YaraHuntsRandom hunting ordiented yara rules
Stars: ✭ 86 (+244%)
dns-collectorAggregator, analyzer, transporter and logging for your DNS logs
Stars: ✭ 58 (+132%)
threat-intelSignatures and IoCs from public Volexity blog posts.
Stars: ✭ 130 (+420%)
dockerDocker containers of elementary OS environments and related tools primarily used in Travis Continuous Integration Automated Testing
Stars: ✭ 18 (-28%)
Loki一个轻量级Web蜜罐 - A Little Web Honeypot.🍯🍯🍯🐝🐝🐝
Stars: ✭ 151 (+504%)
PEiDYet another implementation of PEiD with yara
Stars: ✭ 12 (-52%)
pyarascannerA simple many-rules to many-files YARA scanner for incident response or malware zoos.
Stars: ✭ 23 (-8%)
LokiLike Prometheus, but for logs.
Stars: ✭ 14,483 (+57832%)
Flink Learningflink learning blog. http://www.54tianzhisheng.cn/ 含 Flink 入门、概念、原理、实战、性能调优、源码解析等内容。涉及 Flink Connector、Metrics、Library、DataStream API、Table API & SQL 等内容的学习案例,还有 Flink 落地应用的大型项目案例(PVUV、日志存储、百亿数据实时去重、监控告警)分享。欢迎大家支持我的专栏《大数据实时计算引擎 Flink 实战与性能优化》
Stars: ✭ 11,378 (+45412%)
loki exporterPrometheus exporter to collect metrics and run queries against the Grafana Loki API.
Stars: ✭ 28 (+12%)
winston-lokiGrafana Loki transport for the nodejs logging library Winston.
Stars: ✭ 55 (+120%)
LokiLoki - Simple IOC and Incident Response Scanner
Stars: ✭ 2,217 (+8768%)
yarasploitYaraSploit is a collection of Yara rules generated from Metasploit framework shellcodes.
Stars: ✭ 31 (+24%)
yara-rulesYara rules written by me, for free use.
Stars: ✭ 13 (-48%)
static file analysisAnalysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules
Stars: ✭ 34 (+36%)
ThreatKBKnowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
Stars: ✭ 68 (+172%)
rtfsigA tool to help malware analysts signature unique parts of RTF documents
Stars: ✭ 28 (+12%)
factual-rules-generatorFactual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
Stars: ✭ 62 (+148%)
HyaraYara rule making tool (IDA Pro & Binary Ninja & Cutter Plugin)
Stars: ✭ 142 (+468%)
irmaenpoint detection / live analysis & sandbox host / signatures quality test
Stars: ✭ 25 (+0%)