PwCUK-CTO / OperationCloudHopperView external linksLinks
Indicators of compromise relating to our report on APT10's targeting of global MSPs
☆10Sep 26, 2017Updated 8 years ago
Alternatives and similar repositories for OperationCloudHopper
Users that are interested in OperationCloudHopper are comparing it to the libraries listed below
Sorting:
- Indicators of compromise, YARA rules, and Python scripts to supplement the SANS CTI Summit 2021 talk: "xStart when you're ready".☆14Jul 12, 2021Updated 4 years ago
- ☆22Dec 22, 2020Updated 5 years ago
- ☆13Nov 10, 2020Updated 5 years ago
- Take a list of URIs and print all the of the paths☆10Aug 16, 2020Updated 5 years ago
- IOCs for CRASHOVERRIDE malware framework☆27Jun 15, 2017Updated 8 years ago
- Python 3 library to build YARA rules.☆13Oct 24, 2021Updated 4 years ago
- Registry to JSON. This Project is for learning purposes and is not maintained.☆12Dec 28, 2021Updated 4 years ago
- Script to pull newly-registered domains and check for similarity against a provided word list.☆13Aug 2, 2020Updated 5 years ago
- Python libraries for Windows system coding☆15May 13, 2020Updated 5 years ago
- Ruby bindings for the yara file analysis and classification library☆27Aug 26, 2011Updated 14 years ago
- Basic file metadata gathering script☆21Apr 16, 2025Updated 9 months ago
- Carve $MFT records from a chunk of data (for instance a memory dump)☆16Aug 21, 2016Updated 9 years ago
- Miscellaneous Scripts☆17Sep 11, 2020Updated 5 years ago
- Registry timestamp manipulation☆17Feb 26, 2014Updated 11 years ago
- Ladon POC Moudle CVE-2019-11043 (PHP-FPM + Ngnix)☆16Nov 11, 2019Updated 6 years ago
- Site for IWS book content☆17Oct 28, 2018Updated 7 years ago
- An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.☆21Nov 13, 2022Updated 3 years ago
- ☆82Jul 5, 2016Updated 9 years ago
- A collection of Covid-19 related threat intelligence and resources.☆19Jul 17, 2020Updated 5 years ago
- Volatility Plugins☆22May 1, 2015Updated 10 years ago
- a open source rat from china☆26Oct 28, 2016Updated 9 years ago
- ☆50Dec 28, 2012Updated 13 years ago
- Memory Loader Open Source Project by Sentinel-Labs.☆25Mar 26, 2021Updated 4 years ago
- A tool to help malware analysts signature unique parts of RTF documents☆29Jan 5, 2026Updated last month
- Various Modules & Scripts for use with Viper Framework☆27Aug 20, 2019Updated 6 years ago
- Development guide for Volatility Plugins☆22Sep 6, 2017Updated 8 years ago
- ☆23Aug 10, 2020Updated 5 years ago
- Carve NTFS USN records from binary data☆27May 21, 2017Updated 8 years ago
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Jun 11, 2017Updated 8 years ago
- ☆27Jun 17, 2021Updated 4 years ago
- ☆28Jul 6, 2015Updated 10 years ago
- ☆13Jul 13, 2020Updated 5 years ago
- Merge all Yara rules from official Yara github repository in one .yar file☆31Jun 22, 2018Updated 7 years ago
- Tools from WFA 4/e, timeline tools, etc.☆145Feb 29, 2024Updated last year
- $MFT parser (from live systems or a copy of the $MFT) and raw file copy utility☆38Jul 18, 2024Updated last year
- Mitre chopshop network decoder framework☆30Oct 13, 2025Updated 4 months ago
- Parser for the ISO 9660 disk image format☆31Feb 24, 2020Updated 5 years ago
- Numerous fork bombs in popular programming langs ...☆10May 25, 2017Updated 8 years ago
- analysis of visual basic code☆46Mar 25, 2018Updated 7 years ago