ITAYC0HEN / APT-EcosystemLinks
This repository contains the website and the tools which are part of the joint research between Check Point Research and Intezer to map the connections inside the APT Ecosystem of Russia.
☆110Updated 5 years ago
Alternatives and similar repositories for APT-Ecosystem
Users that are interested in APT-Ecosystem are comparing it to the libraries listed below
Sorting:
- Personal compilation of APT malware from whitepaper releases, documents and own research☆260Updated 6 years ago
- Proofpoint - Emerging Threats - Threat Research tools + publicly shared intel and documentation☆75Updated last month
- Malware Sinkhole List in various formats☆102Updated 3 years ago
- snake - a malware storage zoo☆216Updated 2 years ago
- ☆134Updated 6 years ago
- A mapping of used malware names to commonly known family names☆62Updated 2 years ago
- Repository containing IOCs, CSV and MISP JSON from our blogs☆81Updated 4 years ago
- Miscellaneous Malware RE☆196Updated 3 years ago
- ☆128Updated 6 months ago
- A Yara rule generator for finding related samples and hunting☆160Updated 2 years ago
- Cuckoo running in a nested hypervisor☆128Updated 5 years ago
- Minimal, consistent Python API for building integrations with malware sandboxes.☆139Updated last year
- ☆98Updated 4 years ago
- Allows you to quickly query a Windows machine for RAM artifacts☆220Updated 5 years ago
- Detecting Lateral Movement with Machine Learning☆138Updated 7 years ago
- A tool for de-obfuscating PowerShell scripts☆69Updated 6 years ago
- Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies☆102Updated 4 years ago
- Cuckoo Sandbox plugin for extracts configuration data of known malware☆135Updated last year
- Community-based integrated malware identification system☆82Updated 2 years ago
- Django web interface for managing Yara rules☆193Updated 7 years ago
- MoP - "Master of Puppets" - Advanced malware tracking framework☆82Updated 11 months ago
- Python API wrapper for the Joe Sandbox API.☆66Updated last year
- Static based decoders for malware samples☆93Updated 5 years ago
- Telsy CTI Research Team☆57Updated 4 years ago
- Various config files obtained during malware analysis☆67Updated 6 years ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆102Updated 3 weeks ago
- Parse evtx files and detect use of the DanderSpritz eventlogedit module☆148Updated 7 years ago
- YARA rules for use with ProcFilter☆87Updated 8 years ago
- PE Import Hash Generator☆80Updated 8 years ago
- This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…☆122Updated 4 years ago