0xThiebaut / SignaturesLinks
π§ Currently transfering TLP:CLEAR rules from TLP:AMBER repository...
β21Updated last year
Alternatives and similar repositories for Signatures
Users that are interested in Signatures are comparing it to the libraries listed below
Sorting:
- Modular malware analysis artifact collection and correlation frameworkβ53Updated last year
- A scanner that files with compromised or untrusted code signing certificates written in python.β64Updated 2 years ago
- Tools for offensive security of NetBackup infrastructuresβ41Updated 2 years ago
- Collection of generic YARA rulesβ16Updated 2 months ago
- bootloaders.io is a curated list of known malicious bootloaders for various operating systems. The project aims to assist security profesβ¦β68Updated 2 years ago
- Yara Rules for Modern Malwareβ79Updated last year
- HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.β78Updated 2 years ago
- USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is execβ¦β20Updated 3 years ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!β82Updated 2 years ago
- Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testingβ23Updated 2 years ago
- β27Updated 10 months ago
- Python wrappers for mal_unpackβ37Updated 2 years ago
- Reads and prints information from the website MalAPI.ioβ19Updated 3 years ago
- Identifies metadata of .NET binary files.β21Updated last year
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.β28Updated 2 years ago
- A simple command line program to help defender test their detections for network beacon patterns and domain frontingβ70Updated 3 years ago
- β33Updated 11 months ago
- MITRE TTPs derived from Conti's leaked playbooks from XSS.ISβ40Updated 3 years ago
- Tools that trigger False Positive AV alertsβ52Updated 10 months ago
- Imphash-like calculation on Golang binariesβ49Updated 3 years ago
- β27Updated 3 years ago
- β39Updated last year
- Tools helpful for malware analysisβ23Updated last year
- Create a cool process tree like https://twitter.com/ACEResponder.β35Updated 2 years ago
- A repo to house files for our blogposts on blog.nviso.euβ74Updated 7 months ago
- Static Decryptor for IcedID Malwareβ18Updated 3 years ago
- β23Updated last year
- β18Updated last year
- Lazarus analysis tools and research reportβ57Updated last year
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablinβ¦β45Updated 2 years ago