CAPESandbox / sflockLinks
Sample staging & detonation utility to be used in combination with Cuckoo Sandbox.
☆11Updated 4 months ago
Alternatives and similar repositories for sflock
Users that are interested in sflock are comparing it to the libraries listed below
Sorting:
- Python CLI and module for CIRCL hash lookup☆14Updated 4 months ago
- Network based steganography based control channels and chat.☆8Updated 8 years ago
- Setting up a training environment for MISP☆12Updated 2 years ago
- Repository of tools, YARA rules, and code-snippets from Stairwell's research team.☆22Updated last year
- Digital Forensics date and time☆24Updated 5 months ago
- Collection of tools for processing storage media images☆14Updated 5 months ago
- xlrd2 is a variant of xlrd that is actively maintained☆23Updated 10 months ago
- Automatic generator of YARA modules based in protocol buffers☆16Updated 4 months ago
- A script that extracts embedded images from Office Open XML (OOXML) documents and generates image hash similarity graphs that cluster vis…☆21Updated 3 years ago
- A mapping project between tags (annotations, labels) and domain names☆11Updated last year
- Automate the regular transfer of AIS data into a MISP Server☆10Updated last year
- We publish indicators of compromise related to our stories here. See https://blog.team-cymru.com/ for more information.☆9Updated 3 years ago
- Fast lookup server for NSRL and other hash database used in digital forensic☆45Updated 3 years ago
- Repository containing malware analysis filters for the Windows SysInternals' - Process Monitor tool☆17Updated 4 years ago
- ☆47Updated 5 years ago
- DeployREMnux is a Python script that will deploy a cloud instance of the public REMnux distribution in the Amazon cloud (AWS).☆16Updated 5 years ago
- Threat Feeds, Threat lists, and regular lists of known IP ranges and domains. It updates every 4 hours.☆16Updated 4 years ago
- Static configuration extractor for the Karton framework☆10Updated 5 months ago
- All TMF files that I extracted from Microsoft PDBs.☆12Updated 5 years ago
- ☆15Updated 3 years ago
- Carving tool based in Radare2 & Yara☆16Updated 6 years ago
- ☆12Updated 3 years ago
- This script will pull and analyze syscalls in given application(s) allowing for easier security research purposes☆21Updated 4 years ago
- ☆15Updated 7 years ago
- ☆11Updated 6 years ago
- Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing☆21Updated 2 years ago
- DeepToad is a library and a tool to clusterize similar files using fuzzy hashing☆20Updated 5 years ago
- Generate bulk YARA rules from YAML input☆22Updated 5 years ago
- Tools for macOS Forensic Bootable media☆15Updated 5 years ago
- CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools☆16Updated 3 years ago