CAPESandbox / CAHI

Related projects ⓘ

Alternatives and complementary repositories for CAHI

• CERT-Polska / training-mwdb
  MWDB exercises
  ☆19Updated 5 months ago
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆93Updated 11 months ago
• g-les / 100DaysofYARA
  100 Days of YARA to be updated with rules & ideas as the year progresses
  ☆56Updated last year
• JPCERTCC / jpcert-yara
  JPCERT/CC public YARA rules repository
  ☆103Updated 5 months ago
• ConnorShride / box-ps
  Powershell sandboxing utility
  ☆17Updated 3 weeks ago
• ernw / quarantine-formats
  Documentation and parsers for different anti-virus quarantine formats.
  ☆41Updated 3 years ago
• avast / yarang
  Alternative YARA scanning engine
  ☆67Updated 2 years ago
• MITRECND / malchive
  Various capabilities for static malware analysis.
  ☆75Updated 2 months ago
• harelsegev / INDXRipper
  Carve file metadata from NTFS index ($I30) attributes
  ☆61Updated 9 months ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 2 years ago
• invoke-eric / jupyter
  Jupyter Notebooks for Cyber Threat Intelligence
  ☆35Updated last year
• 3c7 / bazaar
  Python based CLI for MalwareBazaar
  ☆36Updated 3 weeks ago
• CybercentreCanada / CCCS-Yara
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆98Updated 2 months ago
• 3vangel1st / 100DaysOfYARA
  ☆27Updated 2 years ago
• W3ndige / aurora
  Malware similarity platform with modularity in mind.
  ☆76Updated 3 years ago
• CERT-Polska / karton-misp-pusher
  ☆16Updated 6 months ago
• accidentalrebel / mbcscan
  Scans a malware file and lists down the related MBC (Malware Behavior Catalog) details.
  ☆20Updated 2 years ago
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆78Updated last year
• 100DaysofYARA / 2022
  ☆23Updated last year
• hpthreatresearch / tools
  Scripts and tools accompanying HP Threat Research blog posts and reports.
  ☆49Updated 7 months ago
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆95Updated last year
• hatching / triage
  Hatching Triage public command-line utility and API library.
  ☆65Updated last year
• csababarta / memory-baseliner
  Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…
  ☆49Updated last year
• xophidia / DFIR_Linux_Collector
  The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…
  ☆29Updated 2 years ago
• mandiant / apooxml
  Generate YARA rules for OOXML documents.
  ☆37Updated last year
• elastic / labs-releases
  Elastic Security Labs releases
  ☆52Updated 3 weeks ago
• 00010111 / smbtimeline
  ☆31Updated last month
• AndrewRathbun / EventTranscript.db-Research
  A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.
  ☆39Updated 2 years ago
• openrelik / openrelik-server
  The core backend server handling API requests and task management
  ☆31Updated 2 weeks ago