PaloAltoNetworks / pyjarm
pyJARM is a library for doing JARM fingerprinting using python
☆49Updated this week
Alternatives and similar repositories for pyjarm:
Users that are interested in pyjarm are comparing it to the libraries listed below
- Website crawler with YARA detection☆88Updated last year
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- ☆42Updated 2 years ago
- Links to malware-related YARA rules☆15Updated 2 years ago
- A list of JARM hashes for different ssl implementations used by some C2/red team tools.☆139Updated last year
- Fang and defang indicators of compromise. You can test this project in a GUI here: http://ioc-fanger.hightower.space .☆60Updated last year
- Threat Mapping Catalogue☆17Updated 3 years ago
- Bluehat 2018 Graphs for Security Workshop☆42Updated 6 years ago
- ☆44Updated last year
- ☆24Updated 2 years ago
- Active C2 IoCs☆97Updated 2 years ago
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago
- Tools used by CSIRT and especially in the scope of CNW☆16Updated 6 months ago
- Collection of YARA signatures from individual research☆44Updated last year
- An elevated STIX representation of the MITRE ATT&CK Groups knowledge base☆23Updated 2 years ago
- Graph Representation of MITRE ATT&CK's CTI data☆48Updated 5 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆35Updated 2 years ago
- Threat Detection Rules (Snort/Sigma/Yara)☆13Updated last year
- A set of YARA rules for the AIL framework to detect leak or information disclosure☆38Updated last month
- Because phishtank was taken.. explore phishing kits in a contained environment!☆46Updated 2 years ago
- Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.☆41Updated 2 years ago
- Import specific data sources into the Sigma generic and open signature format.☆77Updated 2 years ago
- YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.☆27Updated 3 years ago
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…☆69Updated 2 months ago
- A MITRE Caldera plugin☆42Updated 4 months ago
- A CALDERA plugin for ATT&CK Evaluations Round 1☆33Updated last year
- List of Awesome Vertex Synapse Resources☆27Updated 7 months ago
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…☆61Updated last year
- Yara rules for malicious javascript files from public repositories or written by me.☆12Updated 3 years ago
- Analysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules☆50Updated last year