Florian Roth's repositories
log4shell-detector
Detector for Log4Shell exploitation attempts
yarAnalyzer
Yara Rule Analyzer and Statistics
BlueLedger
A list of my personal projects
YARA-Performance-Guidelines
A guide on how to write fast and memory friendly YARA rules
tiny-shells
All kinds of tiny shells
ThreatResearch-Reporting-Guide
Offensive Research Guide to Help Defense Improve Detection
malware-gems
A not so awesome list of malware gems for aspiring malware analysts
threat-intel
Signatures and IoCs from public Volexity blog posts.
Yara-Rules-2
Repository of YARA rules made by McAfee Enterprise ATR Team
loki-cloud
A flexible and lightweight way to execute LOKI on end systems
DeleteShadowCopies
Deleting Shadow Copies In Pure C++
NimPackt-v1
Nim-based assembly packer and shellcode loader for opsec & profit
100DaysOfYARA2023
Rules Shared by the Community from 100 Days of YARA 2023
icedid_analysis
This repository contains analysis scripts, YARA rules, and additional IoCs related to the blog post "Let’s set ice on fire: Hunting and detecting IcedID infections".
Sigma_rules
Random sigma rules to share with the community
wolf-tools
Tools and scripts by Arctic Wolf
yara-rules-3
A collection of my yara rules
KittyStager
KittyStager is a simple stage 0 C2. It is made of a web server to host the shellcode and an implant, called kitten. The purpose of this project is to be able to have a web server and some kitten and be able to use the with any shellcode.
protections-artifacts
Elastic Security detection content for Endpoint