CERT-Polska / karton
Distributed malware processing framework based on Python, Redis and S3.
☆397Updated 2 months ago
Alternatives and similar repositories for karton:
Users that are interested in karton are comparing it to the libraries listed below
- Malware repository component for samples & static configuration with REST API interface.☆334Updated this week
- Malduck is your ducky companion in malware analysis journeys☆323Updated 6 months ago
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆556Updated this week
- YARA malware query accelerator (web frontend)☆418Updated this week
- Repository of YARA rules made by Trellix ATR Team☆574Updated last year
- DRAKVUF Sandbox - automated hypervisor-level malware analysis system☆1,084Updated last month
- Collection of private Yara rules.☆338Updated 2 months ago
- IOC from articles, tweets for archives☆312Updated last year
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆369Updated 2 years ago
- ReversingLabs YARA Rules☆780Updated last month
- MBC content in markdown☆394Updated last week
- Automatic deployment of Cuckoo Sandbox malware lab using Packer and Vagrant☆236Updated last year
- Threat Hunting tool about Sysmon and graphs☆329Updated last year
- Online hash checker for Virustotal and other services☆817Updated 8 months ago
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆707Updated 2 years ago
- AssemblyLine 4: File triage and malware analysis☆262Updated this week
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆574Updated 8 months ago
- Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.☆242Updated 2 years ago
- YARA Rules I come across on the internet☆333Updated 9 months ago
- Signatures and IoCs from public Volexity blog posts.☆344Updated last month
- c2 traffic☆189Updated last year
- A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs☆688Updated 2 weeks ago
- Python scripts for Malware Bazaar☆148Updated 7 months ago
- Volatility plugin for extracts configuration data of known malware☆482Updated last year
- Cuckoo3 is a Python 3 open source automated malware analysis system.☆662Updated 3 weeks ago
- Sophos-originated indicators-of-compromise from published reports☆551Updated 3 weeks ago
- Sandbox for automated Linux malware analysis.☆476Updated last year
- simple YARA-based IOC scanner☆165Updated last week
- A collection of red team and adversary emulation resources developed and released by MITRE.☆494Updated 3 years ago
- Security ML models encoded as Yara rules☆213Updated last year