504ensicsLabs / DAMM

Related projects ⓘ

Alternatives and complementary repositories for DAMM

• H2Cyber / VolDiff
  VolDiff: Malware Memory Footprint Analysis based on Volatility
  ☆193Updated 7 years ago
• mkorman90 / VolatilityBot
  VolatilityBot – An automated memory analyzer for malware samples and memory dumps
  ☆263Updated 3 years ago
• JamesHabben / evolve
  Web interface for the Volatility Memory Forensics Framework
  ☆259Updated 7 years ago
• kevthehermit / VolUtility
  Web App for Volatility framework
  ☆380Updated 2 months ago
• JohnLaTwC / PyPowerShellXray
  Python script to decode common encoded PowerShell scripts
  ☆215Updated 6 years ago
• codexgigassys / codex-backend
  Codex Gigas malware DNA profiling search engine discovers malware patterns and characteristics assisting individuals who are attracted in…
  ☆154Updated 4 years ago
• THIBER-ORG / userline
  Query and report user logons relations from MS Windows Security Events
  ☆240Updated 6 years ago
• buguroo / cuckooautoinstall
  Auto Installer Script for Cuckoo Sandbox
  ☆166Updated 6 years ago
• SpiderLabs / malware-analysis
  A repository of tools and scripts related to malware analysis
  ☆244Updated 8 years ago
• 0x4D31 / deception-as-detection
  Deception based detection techniques mapped to the MITRE’s ATT&CK framework
  ☆285Updated 7 years ago
• SupportIntelligence / Icewater
  16,432 Free Yara rules created by
  ☆380Updated 5 years ago
• williballenthin / process-forest
  Reconstruct process trees from event logs
  ☆146Updated 4 years ago
• fireeye / tools
  general purpose and malware specific analysis tools
  ☆99Updated 9 years ago
• egaus / MaliciousMacroBot
  ☆150Updated 5 years ago
• tehsyntx / loffice
  Lazy Office Analyzer
  ☆119Updated 7 years ago
• MinervaLabsResearch / Mystique
  Mystique may be used to discover infection markers that can be used to vaccinate endpoints against malware. It receives as input a malici…
  ☆80Updated 7 years ago
• CrowdStrike / CrowdFMS
  CrowdStrike Feed Management System. CrowdFMS is a framework for automating collection and processing of samples from VirusTotal, by lever…
  ☆129Updated 6 years ago
• phage-nz / ph0neutria
  ph0neutria is a malware zoo builder that sources samples straight from the wild. Everything is stored in Viper for ease of access and man…
  ☆300Updated 4 years ago
• sroberts / malwarehouse
  A warehouse for your malware
  ☆133Updated 11 years ago
• OMENScan / AChoir
  Windows Live Artifacts Acquisition Script
  ☆183Updated 2 years ago
• keithjjones / fileintel
  A modular Python application to pull intelligence about malicious files
  ☆118Updated 3 years ago
• tylabs / qs_old
  Command line tool for scanning streams within office documents plus xor db attack
  ☆126Updated last year
• kd8bny / LiMEaide
  A python application designed to remotely dump RAM of a Linux client and create a volatility profile for later analysis on your local hos…
  ☆161Updated 4 years ago
• matonis / page_brute
  Page File analysis tools.
  ☆124Updated 8 years ago
• tomchop / volatility-autoruns
  Autoruns plugin for the Volatility framework
  ☆118Updated 5 years ago
• SparkITSolutions / phoenix
  Cuckoo Sandbox is an automated dynamic malware analysis system
  ☆106Updated 4 years ago
• PoorBillionaire / Windows-Prefetch-Parser
  Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files
  ☆115Updated 5 months ago
• jipegit / IRNotes
  Some IR notes
  ☆73Updated 8 years ago
• citizenlab / malware-signatures
  Yara rules for malware families seen as part of targeted threats project
  ☆134Updated 8 years ago