AllsafeCyberSecurity / malware-analysis-at-scale-defeating-emotet-by-ghidra
Ghidra Script for automated analysis of EMOTET
☆17Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for malware-analysis-at-scale-defeating-emotet-by-ghidra
- ☆21Updated last month
- RustyBlue is a rust implementation of DeepblueCLI, a forensics log analyzer for finding evidence of compromise from windows event logs.☆68Updated 2 years ago
- CDIR Analyzer - parsers for data collected by CDIR Collector☆18Updated last year
- Imphash-like calculation on Golang binaries☆47Updated 2 years ago
- an automatic penetration testing tool☆38Updated 3 years ago
- 分析ツール結果シート☆16Updated 6 years ago
- Lazarus analysis tools and research report☆55Updated 10 months ago
- JPCERT/CC public YARA rules repository☆101Updated 4 months ago
- ☆34Updated last year
- Scripts, Yara rules and other files developed during malware investigations☆24Updated 2 years ago
- Community-based integrated malware identification system☆82Updated last year
- R-CSIRT Linux Triage tool☆37Updated 6 years ago
- Surface Analysis System on Cloud☆19Updated 10 months ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆37Updated last year
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆56Updated last year
- Convert Microsoft Defender Antivirus Signatures (VDM) into YARA rules☆11Updated this week
- Collection of generic YARA rules☆14Updated 4 months ago
- A DFIR tool to analyze artifacts on macOS☆31Updated 3 years ago
- Links to malware-related YARA rules☆14Updated 2 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 2 years ago
- Standardized Malware Analysis Tool☆51Updated 3 years ago
- Malware Configuration Extraction Modules☆47Updated 11 months ago
- Honeybag helps you to create 'bait archive' with any folders and files, notify you if someone accesses it☆16Updated 4 years ago
- Scripts to aid analysis of files obfuscated with ScatterBee.☆15Updated last year
- Yet Another Memory Analyzer for malware detection☆175Updated 5 months ago
- Alternative YARA scanning engine☆67Updated 2 years ago
- Modular malware analysis artifact collection and correlation framework☆52Updated 6 months ago
- Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing☆21Updated last year
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆82Updated last year
- Trace ScriptBlock execution for powershell v2☆39Updated 4 years ago