Florian Roth (Neo23x0)

Neo23x0

Geek Repo

Company:@NextronSystems

Home Page:https://twitter.com/cyb3rops

Github PK Tool:Github PK Tool

ezoic increase your site revenue

Florian Roth's repositories

Loki

Loki - Simple IOC and Incident Response Scanner

Language:PythonLicense:GPL-3.0Stargazers:2537Issues:176Issues:147

signature-base

Signature base for my scanner tools

Language:YARALicense:NOASSERTIONStargazers:1737Issues:194Issues:73

yarGen

yarGen is a generator for YARA rules

Language:PythonLicense:NOASSERTIONStargazers:1089Issues:86Issues:28

auditd

Best Practice Auditd Configuration

Raccine

A Simple Ransomware Vaccine

Language:C++License:UnlicenseStargazers:837Issues:44Issues:48

log4shell-detector

Detector for Log4Shell exploitation attempts

Language:PythonLicense:MITStargazers:721Issues:27Issues:25

munin

Online hash checker for Virustotal and other services

Language:PythonLicense:Apache-2.0Stargazers:671Issues:41Issues:36

Fenrir

Simple Bash IOC Scanner

Language:ShellLicense:MITStargazers:480Issues:35Issues:0

Fnord

Pattern Extractor for Obfuscated Code

Language:ShellLicense:GPL-3.0Stargazers:280Issues:15Issues:1

vti-dorks

Awesome VirusTotal Intelligence Search Queries

yarAnalyzer

Yara Rule Analyzer and Statistics

Language:PythonLicense:MITStargazers:241Issues:25Issues:6

sysmon-config

Sysmon configuration file template with default high-quality event tracing

BlueLedger

A list of my personal projects

evt2sigma

Log Entry to Sigma Rule Converter

Language:PythonLicense:LGPL-3.0Stargazers:92Issues:9Issues:0

panopticon

A YARA Rule Performance Measurement Tool

Language:YARALicense:MITStargazers:50Issues:4Issues:3

prisma

Command Line STDOUT Colorer

Language:PythonStargazers:26Issues:3Issues:0

littlesnitch-log-exporter

LittleSnitch Log Statistics Exporter

Language:PythonLicense:Apache-2.0Stargazers:25Issues:3Issues:0

Talks

Slides of my public talks

malware-gems

A not so awesome list of malware gems for aspiring malware analysts

Stargazers:5Issues:0Issues:0

Yara-Rules-2

Repository of YARA rules made by McAfee Enterprise ATR Team

Language:YARALicense:Apache-2.0Stargazers:5Issues:1Issues:0

threat-intel

Signatures and IoCs from public Volexity blog posts.

Language:PythonLicense:NOASSERTIONStargazers:4Issues:1Issues:0

sysmon-modular

A repository of sysmon configuration modules

Language:PowerShellLicense:MITStargazers:3Issues:1Issues:0

laurel

Transform Linux Audit logs for SIEM usage

Language:RustLicense:GPL-3.0Stargazers:2Issues:1Issues:0

NimPackt-v1

Nim-based assembly packer and shellcode loader for opsec & profit

Language:NimLicense:MITStargazers:2Issues:0Issues:0
Language:PythonLicense:Apache-2.0Stargazers:1Issues:1Issues:0

cve-2021-21985_exp

cve-2021-21985 exploit

Language:PythonStargazers:1Issues:1Issues:0
Language:YARAStargazers:1Issues:0Issues:0

icedid_analysis

This repository contains analysis scripts, YARA rules, and additional IoCs related to the blog post "Let’s set ice on fire: Hunting and detecting IcedID infections".

Language:PythonLicense:MITStargazers:1Issues:1Issues:0

Koh

The Token Stealer

Language:C#License:BSD-3-ClauseStargazers:0Issues:0Issues:0

protections-artifacts

Elastic Security detection content for Endpoint

Language:YARALicense:NOASSERTIONStargazers:0Issues:0Issues:0