InQuest / microsoft-office-macro-clustering
☆17Updated last year
Related projects ⓘ
Alternatives and complementary repositories for microsoft-office-macro-clustering
- Generate bulk YARA rules from YAML input☆22Updated 4 years ago
- Steezy - Ghetto Yara Generation☆15Updated last year
- Generate YARA rules for OOXML documents.☆37Updated last year
- Links to malware-related YARA rules☆14Updated 2 years ago
- Radare2 Metadata Extraction to Elasticsearch☆21Updated 6 months ago
- Handy scripts to speed up malware analysis☆35Updated last year
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆37Updated last year
- TA505 unpacker Python 2.7☆46Updated 4 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 2 years ago
- A collection of my public YARA signatures for various malware families☆29Updated 2 months ago
- A script that extracts embedded images from Office Open XML (OOXML) documents and generates image hash similarity graphs that cluster vis…☆20Updated 2 years ago
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆53Updated 6 years ago
- Scripts, Yara rules and other files developed during malware investigations☆24Updated 2 years ago
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆42Updated last year
- ☆15Updated 2 years ago
- Merge all Yara rules from official Yara github repository in one .yar file☆28Updated 6 years ago
- Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules☆49Updated last year
- ☆13Updated 2 years ago
- Maltego transforms to pivot between PE files based on their VirusTotal codeblocks☆18Updated 3 years ago
- Modular malware analysis artifact collection and correlation framework☆52Updated 6 months ago
- Conceptual Methods for Finding Commonalities in Macho Files☆12Updated 8 months ago
- Telsy CTI Research Team☆57Updated 3 years ago
- ☆31Updated 2 years ago
- Scans a malware file and lists down the related MBC (Malware Behavior Catalog) details.☆20Updated 2 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Updated 4 years ago
- Analytics for Accounting logs from Network devices☆16Updated 3 years ago
- Trace ScriptBlock execution for powershell v2☆39Updated 4 years ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆56Updated last year
- This repository regroups the Yara Rules for the Unprotect Project☆25Updated 4 years ago
- A tool to help malware analysts signature unique parts of RTF documents☆29Updated 9 months ago