0xThiebaut / PCAPeekLinks
A proof-of-concept re-assembler for reverse VNC traffic.
☆25Updated 2 years ago
Alternatives and similar repositories for PCAPeek
Users that are interested in PCAPeek are comparing it to the libraries listed below
Sorting:
- ☆34Updated 2 years ago
- ☆33Updated 3 years ago
- ☆14Updated last year
- a tiny program to consume from ETW providers for research☆48Updated 5 months ago
- Yara Rules for Modern Malware☆77Updated last year
- ☆27Updated 6 months ago
- Placeholder for my detection repo and misc detection engineering content☆43Updated last year
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 2 years ago
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- Yara rules☆21Updated 2 years ago
- ☆45Updated last year
- Living off the False Positive!☆37Updated 4 months ago
- ShellSweeping the evil.☆52Updated 11 months ago
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated 2 years ago
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆44Updated 2 years ago
- Repo containing my public talks☆23Updated 2 years ago
- Linux #rootkit and #malware revealer☆25Updated 10 months ago
- Simple PowerShell script to enable process scanning with Yara.☆93Updated 2 years ago
- Repository of Volatility3 plugins☆22Updated 2 years ago
- ☆14Updated 2 years ago
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆62Updated 2 years ago
- aggregated repo for all conferences and talks I am giving☆17Updated 3 years ago
- Collection of my own detection rules☆20Updated last year
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- Scripts to for ready-to-use Velociraptor instance deployment in Azure☆14Updated last year
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆18Updated last year
- Leverages B64 chunks to split files and save to clipboard☆25Updated last month
- The repository accompanying the Buer Emulation workshop☆24Updated 3 years ago
- ETW-Almulahaza is a consumer python-based tool that help you monitor ETW events of the operating system☆13Updated 2 years ago
- C# Desktop GUI application that either performs YARA scan locally or prepares the scan in Active Directory domain environment with a few …☆34Updated 3 years ago