InQuest / python-inquestlabsLinks
A Pythonic interface and command line tool for interacting with the InQuest Labs API.
☆36Updated last year
Alternatives and similar repositories for python-inquestlabs
Users that are interested in python-inquestlabs are comparing it to the libraries listed below
Sorting:
- Active C2 IoCs☆99Updated 2 years ago
- Carbon Black Response IR tool☆53Updated 4 years ago
- Automated detection rule analysis utility☆29Updated 2 years ago
- S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator☆87Updated 2 years ago
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…☆62Updated last year
- A tool to assess data quality, built on top of the awesome OSSEM.☆78Updated 2 years ago
- Collection of YARA signatures from individual research☆44Updated last year
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- Further investigation in to APT campaigns disclosed by private security firms and security agencies☆86Updated 3 years ago
- Open Dataset of Cobalt Strike Beacon metadata (2018-2022)☆125Updated 3 years ago
- Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation☆105Updated 3 years ago
- ☆77Updated 4 years ago
- A CALDERA plugin for ATT&CK Evaluations Round 1☆33Updated last year
- Website crawler with YARA detection☆88Updated last year
- Random hunting ordiented yara rules☆97Updated 2 years ago
- A YARA Rule Performance Measurement Tool☆59Updated last year
- A list of JARM hashes for different ssl implementations used by some C2/red team tools.☆141Updated 2 years ago
- Simulating Adversary Operations☆93Updated 7 years ago
- Hunt for Keywords , Mutex, Windows Event,Registry Keys,Process,Schedule tasks in Windows Machine☆22Updated 6 months ago
- Threat intelligence and threat detection indicators (IOC, IOA)☆52Updated 4 years ago
- Import specific data sources into the Sigma generic and open signature format.☆78Updated 3 years ago
- Linux Incident Response☆90Updated 5 years ago
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆69Updated 3 years ago
- Login Pages Database forms a knowledge base on login pages related to malicious activities (C2 panels, phishing kits...).☆39Updated 2 years ago
- Valhalla API Client☆70Updated 2 years ago
- Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules☆50Updated last year
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆102Updated 2 weeks ago
- Collection of scripts used to analyse malware or emails☆19Updated 4 years ago
- Links to malware-related YARA rules☆15Updated 2 years ago
- Library of threat hunts to get any user started!☆44Updated 4 years ago