CERT-Polska / mwdb-core
Malware repository component for samples & static configuration with REST API interface.
☆342Updated 2 weeks ago
Alternatives and similar repositories for mwdb-core:
Users that are interested in mwdb-core are comparing it to the libraries listed below
- Distributed malware processing framework based on Python, Redis and S3.☆403Updated last month
- Malduck is your ducky companion in malware analysis journeys☆326Updated 9 months ago
- YARA malware query accelerator (web frontend)☆422Updated last week
- Collection of private Yara rules.☆344Updated last week
- Automatic deployment of Cuckoo Sandbox malware lab using Packer and Vagrant☆235Updated last year
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆372Updated 2 years ago
- Repository of YARA rules made by Trellix ATR Team☆579Updated this week
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆568Updated this week
- IOC from articles, tweets for archives☆313Updated last year
- AssemblyLine 4: File triage and malware analysis☆288Updated last week
- c2 traffic☆189Updated 2 years ago
- YARA Rules I come across on the internet☆335Updated 11 months ago
- MBC content in markdown☆416Updated 2 months ago
- Security ML models encoded as Yara rules☆213Updated last year
- Automated YARA Rule Standardization and Quality Assurance Tool☆199Updated this week
- ☆200Updated last year
- User guide of MISP☆266Updated 2 months ago
- A guide on how to write fast and memory friendly YARA rules☆141Updated last month
- Threat Hunting tool about Sysmon and graphs☆330Updated last year
- ReversingLabs YARA Rules☆799Updated this week
- DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted …☆309Updated last month
- 🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system☆281Updated last month
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆99Updated 3 weeks ago
- Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.☆244Updated 2 years ago
- The Volatility Collaborative GUI☆240Updated this week
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆577Updated 10 months ago
- Python scripts for Malware Bazaar☆150Updated 9 months ago
- ☆124Updated 3 weeks ago
- ☆130Updated last year
- Yara Rule Analyzer and Statistics☆369Updated 2 years ago