PaloAltoNetworks / pyjarmLinks
pyJARM is a library for doing JARM fingerprinting using python
☆50Updated 3 months ago
Alternatives and similar repositories for pyjarm
Users that are interested in pyjarm are comparing it to the libraries listed below
Sorting:
- DGA Detective - Hunt domains generated by Domain Generation Algorithms to identify malware traffic☆42Updated 10 months ago
- Website crawler with YARA detection☆88Updated last year
- Similarius is a Python library to compare web page and evaluate the level of similarity.☆19Updated 2 weeks ago
- ☆24Updated 2 years ago
- Threat Mapping Catalogue☆17Updated 3 years ago
- Links to malware-related YARA rules☆15Updated 2 years ago
- HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.☆77Updated last year
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- A list of JARM hashes for different ssl implementations used by some C2/red team tools.☆141Updated 2 years ago
- Active C2 IoCs☆99Updated 2 years ago
- Tracking APT IOCs☆25Updated 4 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆35Updated 2 years ago
- Threat Detection Rules (Snort/Sigma/Yara)☆13Updated last year
- Login Pages Database forms a knowledge base on login pages related to malicious activities (C2 panels, phishing kits...).☆39Updated 2 years ago
- Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .☆63Updated last year
- Merge all Yara rules from official Yara github repository in one .yar file☆30Updated 7 years ago
- Because phishtank was taken.. explore phishing kits in a contained environment!☆47Updated 3 years ago
- ☆43Updated 2 years ago
- Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.☆66Updated 3 years ago
- A set of YARA rules for the AIL framework to detect leak or information disclosure☆38Updated 4 months ago
- A Pythonic interface and command line tool for interacting with the InQuest Labs API.☆36Updated last year
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Updated 5 years ago
- A cyber threat intelligence chatbot that ingested 2200+ reports from vx-underground.☆23Updated last year
- A MITRE Caldera plugin☆43Updated 7 months ago
- An npm package for extracting common IoC (Indicator of Compromise) from a block of text☆59Updated 5 months ago
- JA4TScan is an active TCP server fingerprinting tool.☆79Updated 9 months ago
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- A GUI/REST interface to find similarities in large sets (think: binaries). Based on ssdeep.☆20Updated 3 years ago
- A tool to help malware analysts signature unique parts of RTF documents☆29Updated 5 months ago
- Bluehat 2018 Graphs for Security Workshop☆42Updated 6 years ago