ITAYC0HEN / APT-EcosystemLinks
This repository contains the website and the tools which are part of the joint research between Check Point Research and Intezer to map the connections inside the APT Ecosystem of Russia.
☆110Updated 5 years ago
Alternatives and similar repositories for APT-Ecosystem
Users that are interested in APT-Ecosystem are comparing it to the libraries listed below
Sorting:
- Personal compilation of APT malware from whitepaper releases, documents and own research☆260Updated 6 years ago
- ☆127Updated 4 months ago
- Cuckoo running in a nested hypervisor☆128Updated 5 years ago
- Malware Sinkhole List in various formats☆103Updated 2 years ago
- Miscellaneous Malware RE☆196Updated 3 years ago
- Repository containing IOCs, CSV and MISP JSON from our blogs☆81Updated 3 years ago
- Toolset for research malware and Cobalt Strike beacons☆211Updated 3 months ago
- Django web interface for managing Yara rules☆193Updated 6 years ago
- This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…☆122Updated 4 years ago
- Static based decoders for malware samples☆93Updated 4 years ago
- ☆98Updated 4 years ago
- A Yara rule generator for finding related samples and hunting☆158Updated 2 years ago
- Python API wrapper for the Joe Sandbox API.☆67Updated last year
- c2 traffic☆189Updated 2 years ago
- ☆165Updated 4 years ago
- snake - a malware storage zoo☆216Updated last year
- Random hunting ordiented yara rules☆97Updated 2 years ago
- ☆134Updated 6 years ago
- A tool for de-obfuscating PowerShell scripts☆68Updated 6 years ago
- A mapping of used malware names to commonly known family names☆62Updated 2 years ago
- Telsy CTI Research Team☆57Updated 4 years ago
- Allows you to quickly query a Windows machine for RAM artifacts☆221Updated 4 years ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆104Updated 3 years ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆102Updated 2 weeks ago
- Automatic YARA rule generation for Malpedia☆161Updated 2 years ago
- Proofpoint - Emerging Threats - Threat Research tools + publicly shared intel and documentation☆74Updated 3 weeks ago
- A lightweight tool to load Windows Event Log evtx files into Elasticsearch.☆117Updated 4 years ago
- Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …☆138Updated 2 years ago
- A malware analysis and classification tool.☆190Updated 3 years ago
- BinSequencer is a script designed to find a common pattern of bytes within a set of samples and generate a YARA rule from the identified…☆76Updated 3 years ago