FireEye Red Team Tool Countermeasures

Powershell Threat Hunting Module for scanning remote endpoints and collecting comprehensive information.

These rules are provided freely to the community

These rules are made available to the community at no cost and without any warranty. In this GitHub repository, you will find rules available in multiple languages, including Snort, Yara, ClamAV, and HXIOC.

Categorization of Rules and Their Release States

The rules are categorized and labeled into two release states: Production: These are rules that are expected to perform effectively with minimal tuning. Supplemental: These rules are known to require additional tuning and adjustments specific to the environment in order to function properly. They are often utilized for hunting workflows. For updates on these rules, please check back to this GitHub. FireEye customers can visit the FireEye Community (community.fireeye.com) for information on how FireEye products detect these threats.

The Complete Responsibility for Quality and Performance

The complete responsibility for the quality and performance of these rules lies with the users.

Other AI Tools

OWASP Foundation

Advanced vulnerability assessment tool for gaining visibility and preventing cyber attacks.

Details

OWASP Joomla Vulnerability Scanner

An OSINT tool that generates username lists for companies on LinkedIn for social engineering attacks or security testing purposes.

Details

OWASP Honeypot

Apache 2 based honeypot for detecting and blocking Struts CVE 2017-5638 exploit with added support for content disposition filename parsing vulnerability.

Details