Cisco-Talos / MBRFilter

Related projects: ⓘ

• ionescu007 / SpecuCheck
  SpecuCheck is a Windows utility for checking the state of the software mitigations and hardware against CVE-2017-5754 (Meltdown), CVE-20…
  ☆566Updated 4 years ago
• bartblaze / Disable-Intel-AMT
  Tool to disable Intel AMT on Windows
  ☆138Updated 7 years ago
• dzzie / SysAnalyzer
  ☆210Updated this week
• williballenthin / shellbags
  Cross-platform, open-source shellbag parser
  ☆149Updated last year
• CrowdStrike / Tortilla
  ☆290Updated 8 years ago
• godaddy / procfilter
  A YARA-integrated process denial framework for Windows
  ☆395Updated 4 years ago
• keydet89 / RegRipper2.8
  ☆375Updated this week
• BromiumLabs / PackerAttacker
  C++ application that uses memory and code hooks to detect packers
  ☆266Updated 6 years ago
• AlicanAkyol / sems
  Virtualbox, VirtualMachine, Cuckoo, Anubis, ThreatExpert, Sandboxie, QEMU, Analysis Tools Detection Tools
  ☆440Updated 5 years ago
• jschicht / RawCopy
  Commandline low level file extractor for NTFS
  ☆272Updated 5 years ago
• endgameinc / Py2ExeDecompiler
  ☆163Updated 7 years ago
• zodiacon / DriverMon
  Monitor activity of any driver
  ☆324Updated 3 years ago
• enigma0x3 / Misc-PowerShell-Stuff
  random powershell goodness
  ☆440Updated 5 years ago
• hfiref0x / ZeroAccess
  ZeroAccess v3 toolkit
  ☆161Updated 6 years ago
• MagnetForensics / SwishDbgExt
  Incident Response & Digital Forensics Debugging Extension
  ☆367Updated 5 years ago
• BreakingMalware / PowerLoaderEx
  PowerLoaderEx - Advanced Code Injection Technique for x32 / x64
  ☆356Updated 7 years ago
• BreakingMalwareResearch / atom-bombing
  Brand New Code Injection for Windows
  ☆720Updated 3 years ago
• MalwareTech / TrickBot-Toolkit
  A collection of tools for dealing with TrickBot
  ☆198Updated 6 years ago
• therealdreg / anticuckoo
  A tool to detect and crash Cuckoo Sandbox
  ☆286Updated last month
• botherder / detekt
  ☆315Updated this week
• wbenny / mini-tor
  proof-of-concept implementation of tor protocol using Microsoft CNG/CryptoAPI
  ☆389Updated 5 years ago
• MalwareTech / TinyXPB
  Windows XP 32-Bit Bootkit
  ☆139Updated 9 years ago
• cryptolok / MorphAES
  IDPS & SandBox & AntiVirus STEALTH KILLER. MorphAES is the world's first polymorphic shellcode engine, with metamorphic properties and ca…
  ☆311Updated 2 years ago
• WithSecureLabs / doublepulsar-c2-traffic-decryptor
  A python2 script for processing a PCAP file to decrypt C2 traffic sent to DOUBLEPULSAR implant
  ☆224Updated 7 years ago
• secrary / InjectProc
  InjectProc - Process Injection Techniques [This project is not maintained anymore]
  ☆991Updated 5 years ago
• hatching / vmcloak
  Automated Virtual Machine Generation and Cloaking for Cuckoo Sandbox.
  ☆479Updated 4 months ago
• armadito / armadito-av
  Armadito antivirus main repository
  ☆208Updated 6 years ago
• mandiant / rvmi
  rVMI - A New Paradigm For Full System Analysis
  ☆350Updated 6 years ago
• felixweyne / ProcessSpawnControl
  Process Spawn Control is a Powershell tool which aims to help in the behavioral (process) analysis of malware. PsC suspends newly launche…
  ☆258Updated 2 years ago