Karneades / malware-persistence

Related projects ⓘ

Alternatives and complementary repositories for malware-persistence

• CERT-Polska / malduck
  Malduck is your ducky companion in malware analysis journeys
  ☆319Updated 5 months ago
• SentineLabs / SentinelLabs_RevCore_Tools
  The Windows Malware Analysis Reversing Core Tools
  ☆89Updated 3 years ago
• silence-is-best / c2db
  c2 traffic
  ☆187Updated last year
• JPCERTCC / jpcert-yara
  JPCERT/CC public YARA rules repository
  ☆104Updated 5 months ago
• Neo23x0 / YARA-Performance-Guidelines
  A guide on how to write fast and memory friendly YARA rules
  ☆126Updated last year
• StrangerealIntel / Orion
  A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...
  ☆138Updated last year
• pan-unit42 / tweets
  ☆130Updated 9 months ago
• netskopeoss / NetskopeThreatLabsIOCs
  ☆92Updated this week
• fr0gger / unprotect
  Unprotect is a python tool for parsing PE malware and extract evasion techniques.
  ☆111Updated last year
• jsecurity101 / TelemetrySource
  ☆222Updated 6 months ago
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆93Updated last year
• d4rk-d4nph3 / Ransomware-Reports
  This repo is a collection of Ransomware reports from vendors, researchers, etc.
  ☆111Updated 2 years ago
• c3rb3ru5d3d53c / mwcfg
  A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck
  ☆124Updated last year
• albertzsigovits / malware-writeups
  Personal research and publication on malware families
  ☆137Updated 2 years ago
• LDO-CERT / orochi
  The Volatility Collaborative GUI
  ☆227Updated this week
• CERT-Polska / mwdb-core
  Malware repository component for samples & static configuration with REST API interface.
  ☆328Updated this week
• AndrewRathbun / VanillaWindowsReference
  A repo that contains recursive directory listings (using PowerShell) of a vanilla (clean) install of every Windows OS version to compare …
  ☆146Updated last month
• CrowdStrike / SuperMem
  A python script developed to process Windows memory images based on triage type.
  ☆258Updated 11 months ago
• fxb-cocacoding / yara-signator
  Automatic YARA rule generation for Malpedia
  ☆156Updated 2 years ago
• mandiant / VM-Packages
  Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.
  ☆146Updated this week
• StrangerealIntel / EternalLiberty
  ☆190Updated last year
• splunk / melting-cobalt
  A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object
  ☆164Updated 2 years ago
• MBCProject / mbc-markdown
  MBC content in markdown
  ☆375Updated this week
• xorhex / mlget
  A golang CLI tool to download malware from a variety of sources.
  ☆141Updated 9 months ago
• bartblaze / Yara-rules
  Collection of private Yara rules.
  ☆330Updated last week
• elastic / labs-releases
  Elastic Security Labs releases
  ☆52Updated 3 weeks ago
• Cyb3r-Monk / RITA-J
  Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.
  ☆194Updated 2 years ago
• fireeye / BitsParser
  ☆141Updated 5 months ago
• forensicxlab / VISION-ProcMon
  A ProcessMonitor visualization application written in rust.
  ☆176Updated last year
• theflakes / reg_hunter
  Blueteam operational triage registry hunting/forensic tool.
  ☆142Updated last year