DissectMalware / pyOneNoteLinks
A python library to parse OneNote (.one) files
☆137Updated 11 months ago
Alternatives and similar repositories for pyOneNote
Users that are interested in pyOneNote are comparing it to the libraries listed below
Sorting:
- A C# based tool for analysing malicious OneNote documents☆114Updated 2 years ago
- YARA rule analyzer to improve rule quality and performance☆102Updated 2 months ago
- Rules shared by the community from 100 Days of YARA 2024☆85Updated 5 months ago
- A guide on how to write fast and memory friendly YARA rules☆144Updated 4 months ago
- A forensic open-source parser module for Autopsy that allows extracting the messages, comments, posts, contacts, calendar entries and rea…☆94Updated 11 months ago
- Rules Shared by the Community from 100 Days of YARA 2023☆77Updated 2 years ago
- Repository of Yara Rules☆111Updated 2 months ago
- Malware Samples that could be used for teaching students about malware analysis.☆56Updated last year
- Dump quarantined files from Windows Defender☆64Updated 3 years ago
- Carve file metadata from NTFS index ($I30) attributes☆66Updated last year
- ☆250Updated last year
- Elastic Security Labs releases☆68Updated last week
- ☆201Updated 7 months ago
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆45Updated 2 years ago
- Use YARA rules on Time Travel Debugging traces☆91Updated last year
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆79Updated last month
- Unprotect is a python tool for parsing PE malware and extract evasion techniques.☆116Updated 2 years ago
- A ProcessMonitor visualization application written in rust.☆181Updated last year
- A specification and style guide for YARA rules☆50Updated last year
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆54Updated last year
- A parser of Windows Defender's DetectionHistory forensic artifact, containing substantial info about quarantined files and executables.☆113Updated 3 years ago
- ☆68Updated 4 months ago
- Detection Engineering with YARA☆87Updated last year
- The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access…☆65Updated this week
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆139Updated last year
- USN Journal full path builder☆60Updated 9 months ago
- Digital Forensics Artifacts Knowledge Base☆82Updated last year
- Malware Configuration Extraction Modules☆50Updated last year
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆104Updated last month
- A python script developed to process Windows memory images based on triage type.☆262Updated last year