MAECProject / schemasLinks
MAEC Schemas and Schema Development
☆88Updated 5 years ago
Alternatives and similar repositories for schemas
Users that are interested in schemas are comparing it to the libraries listed below
Sorting:
- Various capabilities for static malware analysis.☆78Updated 11 months ago
- Malware similarity platform with modularity in mind.☆78Updated 4 years ago
- Random hunting ordiented yara rules☆97Updated 2 years ago
- Research indicators and detection rules☆67Updated last year
- Simple yara rule manager☆66Updated 2 years ago
- Automatic YARA rule generation for Malpedia☆161Updated 2 years ago
- Set of Yara rules for finding files using magics headers☆139Updated 4 years ago
- Extract BITS jobs from QMGR queue and store them as CSV records☆75Updated 6 months ago
- Valhalla API Client☆70Updated 2 years ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆106Updated 3 months ago
- ☆84Updated 5 years ago
- c2 traffic☆189Updated 2 years ago
- A VBA parser and emulation engine to analyze malicious macros.☆96Updated last week
- PE Import Hash Generator☆81Updated 8 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆38Updated 2 years ago
- An advanced memory forensics framework☆96Updated 5 years ago
- VSCode extension for the YARA pattern matching language☆64Updated last year
- Yet another registry parser☆133Updated 3 years ago
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…☆62Updated last year
- YARA rules for use with ProcFilter☆87Updated 8 years ago
- Standardized Malware Analysis Tool☆53Updated 4 years ago
- Unprotect is a python tool for parsing PE malware and extract evasion techniques.☆119Updated 2 years ago
- A YARA Rule Performance Measurement Tool☆59Updated last year
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated last year
- Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …☆139Updated 2 years ago
- Python based CLI for MalwareBazaar☆37Updated last month
- This repository contains files from AppGate / Immunity Malware Analysis Team.☆21Updated 3 years ago
- EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.☆196Updated 5 months ago
- Hatching Triage public command-line utility and API library.☆71Updated last year
- Repository containing IOCs, CSV and MISP JSON from our blogs☆81Updated 4 years ago