ForensicRS / forensic-rs
Forensic framework to build tools that can be reused in multiple projects without changing anything
☆19Updated 5 months ago
Related projects: ⓘ
- A document tagging library☆29Updated last year
- ☆42Updated 5 months ago
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆42Updated last year
- Provides a multi-platform Graphical User Interface for hashlookup☆12Updated 2 months ago
- 🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...☆22Updated 5 months ago
- Imphash-like calculation on Golang binaries☆48Updated 2 years ago
- ☆20Updated 2 months ago
- Manage Your Large Team of Consultants☆12Updated last month
- Python wrappers for mal_unpack☆34Updated last year
- ☆18Updated 3 years ago
- NTFS Security Descriptor Stream ($Secure:$SDS) parser☆13Updated last year
- FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.☆44Updated 6 months ago
- A proof-of-concept re-assembler for reverse VNC traffic.☆24Updated last year
- General malware analysis stuff☆35Updated 3 weeks ago
- ☆63Updated last year
- These FLARE-VM configuration files are designed to be help setup a purpose-built installation, remove unnecessary packages to help stream…☆13Updated 5 months ago
- Windows file metadata / forensic tool.☆14Updated this week
- This is a little plugin to copy disassembly in a way that is usable in YARA rules!☆30Updated last year
- An extension of the sigma standard to include security metrics.☆14Updated last year
- A collection of my yara rules☆33Updated last year
- Defeating Anti-Debugging Techniques for Malware Analysis☆13Updated last year
- A multi-threaded malware sample downloader based upon given MD-5/SHA-1/SHA-256 hashes, using multiple malware databases.☆28Updated last year
- Modular malware analysis artifact collection and correlation framework☆49Updated 4 months ago
- Python based CLI for MalwareBazaar☆36Updated 9 months ago
- File Capability Extractor☆11Updated 2 months ago
- Wrapper for TSK (Sleuth Kit) Bindings☆11Updated last year
- lnk_parser is a full rust implementation to parse windows LNK files☆16Updated last year
- A Self-Contained Open-Source Cyberattack Experimentation Testbed☆35Updated this week
- Share your Yara rules with VirusTotal☆21Updated last month
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆49Updated 4 months ago