Karneades / malware-persistenceLinks
Collection of malware persistence and hunting information. Be a persistent persistence hunter!
☆181Updated 3 weeks ago
Alternatives and similar repositories for malware-persistence
Users that are interested in malware-persistence are comparing it to the libraries listed below
Sorting:
- A guide on how to write fast and memory friendly YARA rules☆149Updated 5 months ago
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆138Updated last year
- The Windows Malware Analysis Reversing Core Tools☆95Updated 4 years ago
- c2 traffic☆189Updated 2 years ago
- JPCERT/CC public YARA rules repository☆110Updated 7 months ago
- Unprotect is a python tool for parsing PE malware and extract evasion techniques.☆116Updated 2 years ago
- ☆130Updated last year
- A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck☆130Updated last year
- This repo is a collection of Ransomware reports from vendors, researchers, etc.☆119Updated 2 years ago
- Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.☆253Updated 2 years ago
- Malware Samples that could be used for teaching students about malware analysis.☆57Updated last year
- YARA rule analyzer to improve rule quality and performance☆102Updated 3 months ago
- Malduck is your ducky companion in malware analysis journeys☆338Updated last month
- runsc loads 32/64 bit shellcode (depending on how runsc is compiled) in a way that makes it easy to load in a debugger. This code is base…☆36Updated 2 years ago
- Malware Sandboxes & Malware Source☆96Updated 8 years ago
- ☆106Updated last year
- ☆252Updated last year
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆106Updated 2 months ago
- ☆141Updated last week
- A golang CLI tool to download malware from a variety of sources.☆148Updated last month
- A python script developed to process Windows memory images based on triage type.☆263Updated last year
- Automatic YARA rule generation for Malpedia☆161Updated 2 years ago
- Cobalt Strike Beacon configuration extractor and parser.☆154Updated 3 years ago
- Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into ca…☆425Updated last year
- MAL-CL (Malicious Command-Line)☆315Updated 2 years ago
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆168Updated 2 years ago
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated last year
- Random hunting ordiented yara rules☆97Updated 2 years ago
- Sysmon EDR POC Build within Powershell to prove ability.☆226Updated 4 years ago
- Research indicators and detection rules☆67Updated last year