DissectMalware / pyOneNoteLinks
A python library to parse OneNote (.one) files
☆136Updated 10 months ago
Alternatives and similar repositories for pyOneNote
Users that are interested in pyOneNote are comparing it to the libraries listed below
Sorting:
- Rules Shared by the Community from 100 Days of YARA 2023☆76Updated 2 years ago
- Rules shared by the community from 100 Days of YARA 2024☆85Updated 5 months ago
- A C# based tool for analysing malicious OneNote documents☆113Updated 2 years ago
- YARA rule analyzer to improve rule quality and performance☆101Updated last month
- Carve file metadata from NTFS index ($I30) attributes☆66Updated last year
- Repository of Yara Rules☆111Updated last month
- Visually inspect and force decode YARA and regex matches found in both binary and text data. With Colors.☆127Updated 5 months ago
- A ProcessMonitor visualization application written in rust.☆180Updated last year
- File analysis and management framework.☆83Updated last year
- JPCERT/CC public YARA rules repository☆108Updated 5 months ago
- Elastic Security Labs releases☆67Updated 2 weeks ago
- A guide on how to write fast and memory friendly YARA rules☆144Updated 3 months ago
- A forensic open-source parser module for Autopsy that allows extracting the messages, comments, posts, contacts, calendar entries and rea…☆93Updated 10 months ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆83Updated last year
- Malware Configuration Extraction Modules☆50Updated last year
- A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck☆128Updated last year
- Dump quarantined files from Windows Defender☆63Updated 3 years ago
- Unprotect is a python tool for parsing PE malware and extract evasion techniques.☆115Updated 2 years ago
- The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access…☆62Updated this week
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆139Updated last year
- Collection of rules created using YARA-Signator over Malpedia☆129Updated 6 months ago
- This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.☆114Updated last year
- ☆104Updated last year
- Collection of scripts used to deobfuscate GOOTLOADER malware samples.☆62Updated 5 months ago
- ☆69Updated 3 months ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆104Updated 3 weeks ago
- ☆247Updated last year
- A repo that contains recursive directory listings (using PowerShell) of a vanilla (clean) install of every Windows OS version to compare …☆163Updated 6 months ago
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆95Updated 2 years ago
- Detection Engineering with YARA☆87Updated last year