Paul-Tew / lifer

Related projects ⓘ

Alternatives and complementary repositories for lifer

• DissectMalware / base64_substring
  Generate a Yara rule to find base64-encoded files containg a specific keyword
  ☆40Updated 6 years ago
• reb311ion / CapaExplorer
  Capa analysis importer for Ghidra.
  ☆61Updated 3 years ago
• Tera0017 / TAFOF-Unpacker
  TA505 unpacker Python 2.7
  ☆46Updated 4 years ago
• mandiant / apooxml
  Generate YARA rules for OOXML documents.
  ☆37Updated last year
• W3ndige / aurora
  Malware similarity platform with modularity in mind.
  ☆76Updated 3 years ago
• DissectMalware / MalwareCMDMonitor
  Shows command lines used by latest instances analyzed on Hybrid-Analysis
  ☆43Updated 6 years ago
• cryptogramfan / Malware-Analysis-Scripts
  Handy scripts to speed up malware analysis
  ☆35Updated last year
• woanware / wmi-parser
  Parses the WMI object database....looking for persistence
  ☆31Updated 4 years ago
• telsy-cyberops / research
  Telsy CTI Research Team
  ☆57Updated 3 years ago
• aleksost / MemoryDecompression
  Tool to decompress data from Windows 10 page files and memory dumps, that has been compressed by the Windows 10 memory manager.
  ☆48Updated 5 years ago
• Big5-sec / SourceFu
  hopefully a source-to-source deobfuscator, aiming at deobfuscating common scripts languages such as Powershell, VBA and Javascript. Curre…
  ☆40Updated 5 years ago
• seifreed / awesome-sandbox-evasion
  A summary about different projects/presentations/tools to test how to evade malware sandbox systems
  ☆48Updated 5 years ago
• ohjeongwook / PowerShellRunBox
  Dynamic PowerShell Analysis Framework Based Upon PowerShell Debugging Functionality
  ☆82Updated last year
• imp0rtp3 / Yobi
  Yara Based Detection Engine for web browsers
  ☆47Updated 3 years ago
• MITRECND / malchive
  Various capabilities for static malware analysis.
  ☆75Updated 2 months ago
• intezer / analyze-scripts
  ☆26Updated last year
• deadbits / yara-rules
  Collection of YARA signatures from individual research
  ☆42Updated last year
• adamkramer / jmp2it
  Transfer EIP control to shellcode during malware analysis investigation
  ☆73Updated 10 years ago
• Dump-GUY / ghidra_scripts
  ☆66Updated last year
• Neo23x0 / panopticon
  A YARA Rule Performance Measurement Tool
  ☆58Updated 8 months ago
• tehsyntx / loffice
  Lazy Office Analyzer
  ☆119Updated 7 years ago
• stvemillertime / ConventionEngine
  ConventionEngine - A Yara Rulepack for PDB Path Hunting
  ☆37Updated last year
• forensiclunch / ETLParser
  Binary commandline executable to parse ETL files
  ☆67Updated 6 years ago
• analyzeDFIR / analyzePF
  Tool for analysis of Windows Prefetch files
  ☆26Updated 6 years ago
• g-les / floss2yar
  ☆15Updated 2 years ago
• seth1002 / tracecorn_tina
  a modified version base on Tracecorn
  ☆20Updated 5 years ago
• avast / yls
  YARA Language Server
  ☆68Updated this week
• mnrkbys / vss_carver
  Carves and recreates VSS catalog and store from Windows disk image.
  ☆96Updated last year
• schrodyn / steezy
  Steezy - Ghetto Yara Generation
  ☆15Updated last year