notruler
Exploitation detector
A tool to detect malicious activities on Exchange servers by scanning mailboxes and forms for signs of exploitation
The opposite of Ruler, provides blue teams with the ability to detect Ruler usage against Exchange.
92 stars
13 watching
18 forks
Language: Go
last commit: about 7 years ago
Linked from 1 awesome list
blue-teamsecurity-auditsecurity-tools
fabacab/awesome-cybersecurity-blueteamRelated projects:
| Repository | Description | Stars |
|---|---|---|
| sensepost/ruler | Tool to abuse Exchange services by exploiting client-side features | 2,171 |
 jzadeh/aktaion | A lightweight tool for detecting exploits and generating policies based on micro behaviors of malicious activities | 142 |
| sensepost/birp | A tool for security assessment and exploitation of TN3270 applications. | 125 |
| sensepost/det | A toolkit designed to test the effectiveness of Network Monitoring and Data Leakage Prevention solutions | 821 |
 matterpreter/offensivecsharp | A collection of C# tooling and POCs for operating system exploitation and vulnerability assessment. | 1,381 |
 dandrews/nefarious-linkedin | An open source browser extension that detects and reveals LinkedIn's methods to scan user browsers for installed extensions | 825 |
 bluscreenofjeff/aggressorscripts | A collection of Cobalt Strike scripts designed to facilitate red teaming and exploitation | 797 |
 codeexpress/respounder | A tool that detects compromised machines by exploiting the lack of LLMNR name resolution in non-adversarial networks. | 314 |
 snoopysecurity/noopener-burp-extension | Detects target="_blank" values without "noopener" and "noreferrer" attributes to identify potential phishing vulnerabilities | 4 |
 cymmetria/strutshoneypot | A honeypot solution designed to detect and block exploits targeting Apache 2 servers | 72 |
 unfetter-discover/unfetter-analytic | An analytics framework for detecting potential adversary activity in Windows systems | 177 |
 certsocietegenerale/notifysecurity | An Outlook add-in tool to simplify reporting of suspicious emails to security teams. | 130 |
 jingzhang617/cod-rank-localize-and-segment | Develops a system to detect, segment, and rank camouflaged objects in images. | 75 |
 allyomalley/dnsobserver | A tool to monitor DNS interactions and send notifications about suspicious activity. | 188 |
 eremit4/cs-discovery | Detects malicious servers in network traffic by analyzing encoded byte patterns | 20 |