ITAYC0HEN / APT-EcosystemLinks
This repository contains the website and the tools which are part of the joint research between Check Point Research and Intezer to map the connections inside the APT Ecosystem of Russia.
☆110Updated 5 years ago
Alternatives and similar repositories for APT-Ecosystem
Users that are interested in APT-Ecosystem are comparing it to the libraries listed below
Sorting:
- Malware Sinkhole List in various formats☆102Updated 3 years ago
- snake - a malware storage zoo☆216Updated 2 years ago
- Allows you to quickly query a Windows machine for RAM artifacts☆220Updated 5 years ago
- ☆134Updated 6 years ago
- Miscellaneous Malware RE☆196Updated 3 years ago
- Personal compilation of APT malware from whitepaper releases, documents and own research☆262Updated 6 years ago
- ☆97Updated 4 years ago
- A Yara rule generator for finding related samples and hunting☆159Updated 2 years ago
- Proofpoint - Emerging Threats - Threat Research tools + publicly shared intel and documentation☆76Updated last month
- Various config files obtained during malware analysis☆67Updated 6 years ago
- Repository containing IOCs, CSV and MISP JSON from our blogs☆81Updated 4 years ago
- A collection of infosec related scripts and information.☆53Updated 10 months ago
- Cuckoo Sandbox plugin for extracts configuration data of known malware☆135Updated last year
- Parse evtx files and detect use of the DanderSpritz eventlogedit module☆148Updated 7 years ago
- Detecting Lateral Movement with Machine Learning☆138Updated 7 years ago
- A tool for de-obfuscating PowerShell scripts☆70Updated 6 years ago
- Django web interface for managing Yara rules☆193Updated 7 years ago
- A mapping of used malware names to commonly known family names☆62Updated 2 years ago
- Telsy CTI Research Team☆57Updated 4 years ago
- Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies☆102Updated 4 years ago
- Cuckoo running in a nested hypervisor☆128Updated 5 years ago
- Community-based integrated malware identification system☆82Updated 2 years ago
- Static based decoders for malware samples☆93Updated 5 years ago
- Various scripts for different malware families☆106Updated 4 years ago
- MoP - "Master of Puppets" - Advanced malware tracking framework☆82Updated 11 months ago
- Lazy Office Analyzer☆122Updated 8 years ago
- This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…☆122Updated 4 years ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆102Updated last month
- YARA rules for use with ProcFilter☆87Updated 8 years ago
- Automatic YARA rule generation for Malpedia☆161Updated 2 years ago