ITAYC0HEN / APT-Ecosystem
This repository contains the website and the tools which are part of the joint research between Check Point Research and Intezer to map the connections inside the APT Ecosystem of Russia.
☆109Updated 5 years ago
Alternatives and similar repositories for APT-Ecosystem:
Users that are interested in APT-Ecosystem are comparing it to the libraries listed below
- Personal compilation of APT malware from whitepaper releases, documents and own research☆260Updated 6 years ago
- A Yara rule generator for finding related samples and hunting☆158Updated 2 years ago
- snake - a malware storage zoo☆218Updated last year
- ☆125Updated 2 months ago
- Allows you to quickly query a Windows machine for RAM artifacts☆220Updated 4 years ago
- Django web interface for managing Yara rules☆191Updated 6 years ago
- MoP - "Master of Puppets" - Advanced malware tracking framework☆80Updated 7 months ago
- Repository containing IOCs, CSV and MISP JSON from our blogs☆80Updated 3 years ago
- ☆98Updated 4 years ago
- ☆134Updated 6 years ago
- Malware/IOC ingestion and processing engine☆104Updated 6 years ago
- Static based decoders for malware samples☆92Updated 4 years ago
- A tool for de-obfuscating PowerShell scripts☆68Updated 5 years ago
- Automated Tactics Techniques & Procedures☆253Updated last year
- Cuckoo running in a nested hypervisor☆128Updated 4 years ago
- Malware Sinkhole List in various formats☆103Updated 2 years ago
- Various config files obtained during malware analysis☆67Updated 6 years ago
- Miscellaneous Malware RE☆195Updated 2 years ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆100Updated 2 months ago
- Telsy CTI Research Team☆57Updated 4 years ago
- A mapping of used malware names to commonly known family names☆62Updated 2 years ago
- A web-based tool to assist the work of the intuitive threat analysts.☆113Updated 6 years ago
- Automatic YARA rule generation for Malpedia☆159Updated 2 years ago
- Repository of yara rules☆46Updated 9 years ago
- IOC from articles, tweets for archives☆313Updated last year
- ☆160Updated 4 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆108Updated 7 years ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆100Updated 3 years ago
- Command line tool for scanning streams within office documents plus xor db attack☆126Updated last year
- This tool maps a file's behavior on MITRE ATT&CK matrix.☆58Updated 5 years ago