Giters
Florian Roth (Neo23x0)

Neo23x0

Geek Repo

5k

followers

22

following

133

stars

Company:@NextronSystems

Location:Frankfurt, Germany

Home Page:https://twitter.com/cyb3rops

Github PK Tool:Github PK Tool

Florian Roth's repositories

log4shell-detector

Detector for Log4Shell exploitation attempts

Language:PythonLicense:MITStargazers:731Issues:27Issues:25

Fenrir

Simple Bash IOC Scanner

Language:ShellLicense:MITStargazers:661Issues:39Issues:0

yarAnalyzer

Yara Rule Analyzer and Statistics

Language:PythonLicense:MITStargazers:341Issues:26Issues:6

Fnord

Pattern Extractor for Obfuscated Code

Language:ShellLicense:GPL-3.0Stargazers:293Issues:15Issues:1

BlueLedger

A list of my personal projects

Stargazers:164Issues:16Issues:0

YARA-Performance-Guidelines

A guide on how to write fast and memory friendly YARA rules

Stargazers:117Issues:8Issues:0

evt2sigma

Log Entry to Sigma Rule Converter

Language:PythonLicense:LGPL-3.0Stargazers:103Issues:10Issues:0

tiny-shells

All kinds of tiny shells

License:Apache-2.0Stargazers:58Issues:4Issues:0

ThreatResearch-Reporting-Guide

Offensive Research Guide to Help Defense Improve Detection

Stargazers:29Issues:4Issues:0

malware-gems

A not so awesome list of malware gems for aspiring malware analysts

Stargazers:6Issues:1Issues:0

threat-intel

Signatures and IoCs from public Volexity blog posts.

Language:PythonLicense:NOASSERTIONStargazers:6Issues:2Issues:0

Yara-Rules-2

Repository of YARA rules made by McAfee Enterprise ATR Team

Language:YARALicense:Apache-2.0Stargazers:6Issues:3Issues:0

laurel

Transform Linux Audit logs for SIEM usage

Language:RustLicense:GPL-3.0Stargazers:4Issues:2Issues:0

asgard-playbooks

Language:PythonLicense:Apache-2.0Stargazers:3Issues:2Issues:0

loki-cloud

A flexible and lightweight way to execute LOKI on end systems

License:GPL-3.0Stargazers:3Issues:2Issues:0

NimPlant

A light-weight first-stage C2 implant written in Nim.

Language:HTMLLicense:MITStargazers:3Issues:1Issues:0

DeleteShadowCopies

Deleting Shadow Copies In Pure C++

Language:C++License:MITStargazers:2Issues:1Issues:0

Detection

Language:YARAStargazers:2Issues:0Issues:0

NimPackt-v1

Nim-based assembly packer and shellcode loader for opsec & profit

Language:NimLicense:MITStargazers:2Issues:1Issues:0

Venom

Venom is a library that meant to perform evasive communication using stolen browser socket

Language:C++License:BSD-2-ClauseStargazers:2Issues:1Issues:0

YARA_Rules

Language:YARALicense:NOASSERTIONStargazers:2Issues:1Issues:0

100DaysOfYARA2023

Rules Shared by the Community from 100 Days of YARA 2023

Language:YARAStargazers:1Issues:1Issues:0

icedid_analysis

This repository contains analysis scripts, YARA rules, and additional IoCs related to the blog post "Let’s set ice on fire: Hunting and detecting IcedID infections".

Language:PythonLicense:MITStargazers:1Issues:2Issues:0

Sigma_rules

Random sigma rules to share with the community

Stargazers:1Issues:1Issues:0

wolf-tools

Tools and scripts by Arctic Wolf

Language:PowerShellStargazers:1Issues:1Issues:0

yara-rules-3

A collection of my yara rules

Language:YARALicense:NOASSERTIONStargazers:1Issues:1Issues:0

GCTI

Language:YARALicense:Apache-2.0Stargazers:0Issues:1Issues:0

KittyStager

KittyStager is a simple stage 0 C2. It is made of a web server to host the shellcode and an implant, called kitten. The purpose of this project is to be able to have a web server and some kitten and be able to use the with any shellcode.

Language:GoLicense:MITStargazers:0Issues:1Issues:0

Koh

The Token Stealer

Language:C#License:BSD-3-ClauseStargazers:0Issues:1Issues:0

protections-artifacts

Elastic Security detection content for Endpoint

Language:YARALicense:NOASSERTIONStargazers:0Issues:1Issues:0