Volatility plugin for extracts configuration data of known malware
☆495Dec 22, 2023Updated 2 years ago
Alternatives and similar repositories for MalConfScan
Users that are interested in MalConfScan are comparing it to the libraries listed below
Sorting:
- Cuckoo Sandbox plugin for extracts configuration data of known malware☆135Dec 22, 2023Updated 2 years ago
- Malware Configuration And Payload Extraction☆762Nov 22, 2024Updated last year
- Repository of YARA rules made by Trellix ATR Team☆627Mar 18, 2025Updated last year
- Artifact analysis tools by JPCERT/CC Analysis Center☆462Aug 14, 2025Updated 7 months ago
- Investigate suspicious activity by visualizing Sysmon's event log☆430Dec 22, 2023Updated 2 years ago
- Automatic YARA rule generation for Malpedia☆168Sep 8, 2022Updated 3 years ago
- YARA signature and IOC database for my scanners and tools☆2,882Mar 9, 2026Updated last week
- ReversingLabs YARA Rules☆900Nov 3, 2025Updated 4 months ago
- IOC from articles, tweets for archives☆318Dec 12, 2023Updated 2 years ago
- Windows Events Attack Samples☆2,526Jan 24, 2023Updated 3 years ago
- ☆1,133Dec 19, 2023Updated 2 years ago
- Community-based integrated malware identification system☆81Dec 10, 2022Updated 3 years ago
- Investigate malicious Windows logon by visualizing and analyzing Windows event log☆3,137Oct 19, 2025Updated 5 months ago
- Malwoverview is a rapid response tool used to gather intelligence information from VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malsh…☆3,645Mar 11, 2026Updated last week
- DRAKVUF Sandbox - automated hypervisor-level malware analysis system☆1,278Mar 1, 2026Updated 2 weeks ago
- A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs☆791Updated this week
- Toolset for research malware and Cobalt Strike beacons☆211Mar 11, 2025Updated last year
- ☆129Feb 2, 2025Updated last year
- yarGen is a generator for YARA rules☆1,780Jan 10, 2026Updated 2 months ago
- Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.☆1,340Dec 13, 2022Updated 3 years ago
- Kaspersky's GReAT KLara☆733Jul 24, 2024Updated last year
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆723Dec 26, 2022Updated 3 years ago
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆388May 11, 2022Updated 3 years ago
- Indicators of Compromises (IOC) of our various investigations☆1,933Mar 10, 2026Updated last week
- A toolset to make a system look as if it was the victim of an APT attack☆2,722Sep 23, 2025Updated 5 months ago
- Collection of private Yara rules.☆379Jan 28, 2026Updated last month
- A machine learning tool that ranks strings based on their relevance for malware analysis.☆754Mar 11, 2026Updated last week
- A VBA parser and emulation engine to analyze malicious macros.☆1,119Jul 10, 2024Updated last year
- Noriben - Portable, Simple, Malware Analysis Sandbox☆1,239Aug 7, 2025Updated 7 months ago
- Generating YARA rules based on binary code☆220Oct 7, 2021Updated 4 years ago
- A curated list of awesome YARA rules, tools, and people.☆4,158Feb 25, 2026Updated 3 weeks ago
- Awesome VirusTotal Intelligence Search Queries☆333May 16, 2023Updated 2 years ago
- Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which …☆446Oct 26, 2022Updated 3 years ago
- ☆98Oct 7, 2020Updated 5 years ago
- YARA malware query accelerator (web frontend)☆437Feb 3, 2026Updated last month
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,923Updated this week
- The FLARE team's open-source tool to identify capabilities in executable files.☆5,890Updated this week
- Code and yara rules to detect and analyze Cobalt Strike☆272May 5, 2021Updated 4 years ago
- A python script developed to process Windows memory images based on triage type.☆266Nov 25, 2023Updated 2 years ago