MAECProject / schemasLinks
MAEC Schemas and Schema Development
☆88Updated 5 years ago
Alternatives and similar repositories for schemas
Users that are interested in schemas are comparing it to the libraries listed below
Sorting:
- Various capabilities for static malware analysis.☆79Updated last year
- Research indicators and detection rules☆66Updated 2 years ago
- Extract BITS jobs from QMGR queue and store them as CSV records☆75Updated 7 months ago
- Malware similarity platform with modularity in mind.☆78Updated 4 years ago
- Standardized Malware Analysis Tool☆55Updated 4 years ago
- Random hunting ordiented yara rules☆97Updated 2 years ago
- Hunt malware with Volatility☆47Updated 2 months ago
- Simple yara rule manager☆66Updated 2 years ago
- Yet another registry parser☆136Updated 3 years ago
- PE Import Hash Generator☆81Updated 8 years ago
- ☆84Updated 5 years ago
- Set of Yara rules for finding files using magics headers☆140Updated 5 years ago
- VSCode extension for the YARA pattern matching language☆64Updated last year
- Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files☆120Updated last year
- Automatic YARA rule generation for Malpedia☆161Updated 3 years ago
- MWDB exercises☆20Updated 8 months ago
- EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.☆199Updated 6 months ago
- A VBA parser and emulation engine to analyze malicious macros.☆96Updated last month
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆106Updated 4 months ago
- Community modules for FAME☆65Updated 2 weeks ago
- Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …☆141Updated 3 years ago
- YARA rules for use with ProcFilter☆87Updated 8 years ago
- An advanced memory forensics framework☆96Updated 6 years ago
- A taxonomy and dictionary of malware behaviors.☆43Updated 6 years ago
- Lazy Office Analyzer☆122Updated 8 years ago
- A YARA Rule Performance Measurement Tool☆60Updated last year
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆37Updated 2 years ago
- Repository containing IOCs, CSV and MISP JSON from our blogs☆81Updated 4 years ago
- Unprotect is a python tool for parsing PE malware and extract evasion techniques.☆119Updated 2 years ago
- Mindmaps for threat hunting - work in progress.☆151Updated 3 years ago