Karneades / malware-persistence
Collection of malware persistence and hunting information. Be a persistent persistence hunter!
☆164Updated 2 months ago
Related projects ⓘ
Alternatives and complementary repositories for malware-persistence
- The Windows Malware Analysis Reversing Core Tools☆89Updated 3 years ago
- c2 traffic☆188Updated last year
- Malduck is your ducky companion in malware analysis journeys☆318Updated 4 months ago
- Unprotect is a python tool for parsing PE malware and extract evasion techniques.☆111Updated last year
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆137Updated 11 months ago
- ☆221Updated 6 months ago
- A guide on how to write fast and memory friendly YARA rules☆124Updated last year
- JPCERT/CC public YARA rules repository☆101Updated 4 months ago
- A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck☆124Updated 11 months ago
- ☆130Updated 9 months ago
- Automatic YARA rule generation for Malpedia☆154Updated 2 years ago
- ☆90Updated 3 weeks ago
- MBC content in markdown☆371Updated 2 weeks ago
- ☆186Updated last week
- YARA rule analyzer to improve rule quality and performance☆93Updated 11 months ago
- Personal research and publication on malware families☆137Updated 2 years ago
- Elastic Security Labs releases☆51Updated last week
- A python script developed to process Windows memory images based on triage type.☆258Updated 11 months ago
- This repo is a collection of Ransomware reports from vendors, researchers, etc.☆111Updated 2 years ago
- Malware Samples that could be used for teaching students about malware analysis.☆47Updated 7 months ago
- Public Repo for Atomic Test Harness☆251Updated 4 months ago
- ☆187Updated last year
- A repo that contains recursive directory listings (using PowerShell) of a vanilla (clean) install of every Windows OS version to compare …☆145Updated last month
- Random hunting ordiented yara rules☆95Updated last year
- A golang CLI tool to download malware from a variety of sources.☆141Updated 9 months ago
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆164Updated 2 years ago
- Collection of rules created using YARA-Signator over Malpedia☆112Updated 11 months ago
- Further investigation in to APT campaigns disclosed by private security firms and security agencies☆80Updated 2 years ago
- Various capabilities for static malware analysis.☆75Updated 2 months ago
- Blueteam operational triage registry hunting/forensic tool.☆142Updated last year