REMnux / salt-states

Related projects: ⓘ

• 3c7 / yaramanager
  Simple yara rule manager
  ☆64Updated last year
• ANSSI-FR / bits_parser
  Extract BITS jobs from QMGR queue and store them as CSV records
  ☆73Updated 2 months ago
• aarju / Kibana_ForensicDashboards
  Dashboards for conducting forensic investigation using windows events in Kibana
  ☆17Updated 5 years ago
• weslambert / securityonion-misp
  ☆34Updated 3 years ago
• certsocietegenerale / fame_modules
  Community modules for FAME
  ☆63Updated 2 weeks ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆54Updated 3 years ago
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆95Updated last year
• W3ndige / aurora
  Malware similarity platform with modularity in mind.
  ☆75Updated 3 years ago
• mayhemiclabs / weblabyrinth
  A system that creates a bogus web structure to entrap and delay web scanners
  ☆52Updated 3 years ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆51Updated 3 years ago
• csababarta / volatility_plugins
  Volatility plugins created by the author
  ☆44Updated 8 years ago
• NextronSystems / thor_attck
  THOR MITRE ATT&CK Framework Coverage
  ☆24Updated 4 years ago
• Maboalenen / DFIR
  Incident response teams usually working on the offline data, collecting the evidence, then analyze the data
  ☆44Updated 2 years ago
• 00010111 / smbtimeline
  ☆28Updated last year
• BreakingMalwareResearch / YetiToElastic
  YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack
  ☆15Updated 3 years ago
• haxrob / CVE-2019-19781
  DFIR notes for Citrix ADC (NetScaler) appliances vulnerable to CVE-2019-19781
  ☆45Updated 4 years ago
• jeFF0Falltrades / YARA-Signatures
  A collection of my public YARA signatures for various malware families
  ☆28Updated last month
• airbus-cert / Splunk-ETW
  A Splunk Technology Add-on to forward filtered ETW events.
  ☆30Updated 3 years ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆102Updated 6 years ago
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆34Updated 5 years ago
• 3c7 / bazaar
  Python based CLI for MalwareBazaar
  ☆36Updated 9 months ago
• corelight / threat-hunting-guide
  ☆43Updated 2 years ago
• da667 / AutoMISP
  automate your MISP installs
  ☆66Updated 4 years ago
• zerofox-oss / phishpond
  Because phishtank was taken.. explore phishing kits in a contained environment!
  ☆43Updated 2 years ago
• deadbits / yara-rules
  Collection of YARA signatures from individual research
  ☆41Updated 10 months ago
• forensicanalysis / elementary
  🕵️ Process and show forensic artifacts (e.g. eventlogs, usb devices, network devices...) in forensicstores
  ☆46Updated 10 months ago
• Neo23x0 / panopticon
  A YARA Rule Performance Measurement Tool
  ☆58Updated 6 months ago
• imp0rtp3 / Yobi
  Yara Based Detection Engine for web browsers
  ☆47Updated 3 years ago
• MITRECND / malchive
  Various capabilities for static malware analysis.
  ☆75Updated 2 weeks ago
• msuhanov / winmem_decompress
  Extract compressed memory pages from page-aligned data
  ☆41Updated 5 years ago