Neo23x0

#DFIR #Sigma #YARA #Rust #Python #Go

@NextronSystemsFrankfurt, Germany

Pinned Repositories

auditd
Best Practice Auditd Configuration
1.4k 80 23251
Fenrir
Simple Bash IOC Scanner
Language:Shell668 39 0103
log4shell-detector
Detector for Log4Shell exploitation attempts
Language:Python731 27 25126
Loki
Loki - Simple IOC and YARA Scanner
Language:Python3.3k 186 171574
munin
Online hash checker for Virustotal and other services
Language:Python800 42 42147
Raccine
A Simple Ransomware Vaccine
Language:C++941 43 52123
signature-base
YARA signature and IOC database for my scanners and tools
Language:YARA2.4k 193 95593
yarGen
yarGen is a generator for YARA rules
Language:Python1.5k 91 33274
APTSimulator
A toolset to make a system look as if it was the victim of an APT attack
Language:Batchfile2.4k 120 9416
sigma
Main Sigma Rule Repository
Language:Python7.8k 329 5792.1k

Neo23x0's Repositories

Neo23x0/Loki
Loki - Simple IOC and YARA Scanner
Language:Python3.3k 186 171574
Neo23x0/signature-base
YARA signature and IOC database for my scanners and tools
Language:YARA2.4k 193 95593
Neo23x0/yarGen
yarGen is a generator for YARA rules
Language:Python1.5k 91 33274
Neo23x0/auditd
Best Practice Auditd Configuration
1.4k 80 23251
Neo23x0/Raccine
A Simple Ransomware Vaccine
Language:C++941 43 52123
Neo23x0/munin
Online hash checker for Virustotal and other services
Language:Python800 42 42147
Neo23x0/sysmon-config
Sysmon configuration file template with default high-quality event tracing
435 36 760
Neo23x0/vti-dorks
Awesome VirusTotal Intelligence Search Queries
320 27 450
Neo23x0/god-mode-rules
God Mode Detection Rules
Language:YARA125 7 019
Neo23x0/yaraQA
YARA rule analyzer to improve rule quality and performance
Language:Python96 6 35
Neo23x0/Loki2
LOKI2 - Simple IOC and YARA Scanner
Language:Rust72 5 08
Neo23x0/panopticon
A YARA Rule Performance Measurement Tool
Language:YARA58 4 410
Neo23x0/LOLSecIssues
Cybersecurity's lighter side: a collection of the most amusing misunderstandings and missteps from newcomers to offensive security tools. A repository where naiveté in infosec is met with humor.
57 8 13
Neo23x0/Talks
Slides of my public talks
43 6 01
Neo23x0/awesome-yara
A curated list of awesome YARA rules, tools, and people.
31 6 07
Neo23x0/littlesnitch-log-exporter
LittleSnitch Log Statistics Exporter
Language:Python31 4 02
Neo23x0/YARA-Style-Guide
A specification and style guide for YARA rules
29 2 12
Neo23x0/BlueTeam-Tools
Tools and Techniques for Blue Team / Incident Response
21 1 01
Neo23x0/yara-uuid-generator
A tool that adds reproducible UUIDs to YARA rules
Language:Python13 2 02
Neo23x0/defensive-project-ideas
Ideas for projects for defensive research or blue teaming
10 3 0
Neo23x0/Yara-Rules-5
Repository of Yara Rules
Language:YARA6 1 0
Neo23x0/plyara-1
Parse YARA rules and operate over them more easily.
Language:Python5 3 03
Neo23x0/DailyIOC
IOC from articles, tweets for archives
Language:YARA4 1 0
Neo23x0/dateparser
python parser for human readable dates
Language:Python2 1 0
Neo23x0/detection-1
Detection in the form of Yara, Snort and ClamAV signatures.
Language:YARA2 1 0
Neo23x0/detection-rules
Collection of my own detection rules
Language:YARA2 1 0
Neo23x0/yara-rules-4
Collection of YARA signatures from individual research
Language:YARA1 1 0
Neo23x0/Signatures
🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...
Language:YARA1 0
Neo23x0/Tools
Language:PowerShell1 0
Neo23x0/Yara-1
Language:YARA1 0