CERT-Polska / malduck
Malduck is your ducky companion in malware analysis journeys
☆313Updated 3 months ago
Related projects: ⓘ
- Malware repository component for samples & static configuration with REST API interface.☆311Updated 2 weeks ago
- A Binary Genetic Traits Lexer Framework☆385Updated 9 months ago
- MBC content in markdown☆358Updated this week
- Distributed malware processing framework based on Python, Redis and S3.☆381Updated last week
- YARA malware query accelerator (web frontend)☆407Updated this week
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆518Updated this week
- Collection of malware persistence and hunting information. Be a persistent persistence hunter!☆163Updated 3 weeks ago
- Dynamic unpacker based on PE-sieve☆650Updated 6 months ago
- c2 traffic☆187Updated last year
- High Octane Triage Analysis☆627Updated this week
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆568Updated 4 months ago
- Assortment of hashing algorithms used in malware☆323Updated 2 months ago
- Collection of private Yara rules.☆317Updated last month
- Research notes☆108Updated this week
- The Volatility Collaborative GUI☆216Updated last week
- Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.☆238Updated last year
- Generating YARA rules based on binary code☆197Updated 2 years ago
- Code snips and notes☆129Updated 2 years ago
- A golang CLI tool to download malware from a variety of sources.☆139Updated 7 months ago
- IOC from articles, tweets for archives☆310Updated 9 months ago
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆360Updated 2 years ago
- A guide on how to write fast and memory friendly YARA rules☆123Updated last year
- ☆185Updated last year
- DRAKVUF Sandbox - automated hypervisor-level malware analysis system☆1,031Updated this week
- Quickly debug shellcode extracted during malware analysis☆547Updated last year
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆136Updated 10 months ago
- Automatic YARA rule generation for Malpedia☆152Updated 2 years ago
- YARA Rules I come across on the internet☆327Updated 5 months ago
- ☆97Updated 10 months ago
- This repo is a collection of Ransomware reports from vendors, researchers, etc.☆111Updated 2 years ago