HolmesProcessing / Holmes-Totem
Investigation Planner for fast running analysis with predictable execution time. For example, static analysis.
☆29Updated 5 years ago
Alternatives and similar repositories for Holmes-Totem:
Users that are interested in Holmes-Totem are comparing it to the libraries listed below
- Investigation Planner for long running analysis with unpredictable execution time. For example, dynamic analysis.☆15Updated 7 years ago
- The Storage Planner manages access to all data within the Holmes Processing system. It orchestrates the interaction across multiple Datab…☆16Updated 6 years ago
- Main program for receiving tasking and objects. It validates input, checks authentication, and pushes the requests to the pipeline.☆13Updated 7 years ago
- website☆9Updated 4 years ago
- Creating function call graphs based on radare2 framwork, plot fancy graphs and extract behavior indicators☆86Updated 7 years ago
- CuckooML: Machine Learning for Cuckoo Sandbox☆146Updated 2 years ago
- A dumb set of scripts for building a cuckoo rig☆61Updated 8 years ago
- Scripts for dealing with various ek's☆69Updated 8 years ago
- BASS - BASS Automated Signature Synthesizer☆174Updated 6 years ago
- Bit9 + Carbon Black Threat Intelligence☆82Updated 9 years ago
- Proof-of-concept automated baremetal malware analysis framework.☆14Updated 9 years ago
- Scalable Binary Data Extraction in Hadoop☆143Updated 10 years ago
- A Yara rule generator for finding related samples and hunting☆158Updated 2 years ago
- Creating function call graphs based on radare2 framwork, plot fancy graphs and extract behavior indicators☆31Updated 8 years ago
- Codex Gigas malware DNA profiling search engine discovers malware patterns and characteristics assisting individuals who are attracted in…☆154Updated 5 years ago
- Detection of malware using dynamic behavior and Windows audit logs☆77Updated 9 years ago
- A system to record malware using PANDA☆43Updated 5 years ago
- Malware Classifier From Network Captures☆82Updated 8 years ago
- threat language parser☆60Updated 9 years ago
- Static extraction of dridex malware configuration☆19Updated 9 years ago
- Modified edition of cuckoo community modules☆50Updated 7 years ago
- An OS X analyzer for Cuckoo Sandbox project☆57Updated 9 years ago
- Public Profile Repository for Rekall Memory Forensic.☆100Updated 4 years ago
- Various Yara signatures (possibly to be included in a release later).☆85Updated 5 years ago
- VirusTotal Intelligence Notification Puller☆28Updated 8 years ago
- Parse YARA rules and operate over them more easily.☆184Updated last month
- Implementation of the DIMVA 2017 publication "Quincy: Detecting Host-Based Code Injection Attacks in Memory Dumps"☆69Updated 3 years ago
- Manage VT Alerts☆62Updated 8 years ago
- (Unofficial) Python API for https://malwr.com/☆62Updated 8 years ago
- a collection of public yara rules☆26Updated 5 years ago