RussianPanda95 / Configuration_extractorsLinks
Configuration Extractors for Malware
☆113Updated 5 months ago
Alternatives and similar repositories for Configuration_extractors
Users that are interested in Configuration_extractors are comparing it to the libraries listed below
Sorting:
- Repository of Yara Rules☆122Updated 3 weeks ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆83Updated 2 years ago
- Some of my Malware Analysis writeups☆46Updated 2 years ago
- Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …☆38Updated 7 months ago
- Python tool to check rootkits in Windows kernel☆201Updated last month
- ☆49Updated last week
- Powershell Linter☆83Updated this week
- Yara Rules for Modern Malware☆79Updated last year
- A ProcessMonitor visualization application written in rust.☆184Updated 2 years ago
- information about ransomware groups (Ransomware Analysis Notes)☆39Updated last year
- A C# based tool for analysing malicious OneNote documents☆116Updated 2 years ago
- A collection of tools and detections for the Sliver C2 Frameworj☆130Updated 2 years ago
- ☆113Updated 2 months ago
- This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.☆90Updated last year
- ☆27Updated 10 months ago
- A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …☆163Updated last year
- ☆37Updated last year
- A collection of small scripts and tools for deobfuscation and malware analysis.☆66Updated 2 years ago
- ☆70Updated 8 months ago
- Baseline a Windows System against LOLBAS☆68Updated last year
- ☆82Updated 10 months ago
- Finding secrets in kernel and user memory☆116Updated 2 years ago
- ☆32Updated last year
- MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.☆220Updated 2 years ago
- ☆24Updated 7 months ago
- Vibe Malware Triage - MCP server for static PE analysis.☆70Updated 4 months ago
- ☆38Updated 7 months ago
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆46Updated 2 years ago
- C2 Active Scanner☆60Updated last year
- This is a simulation of attack by Fancy Bear group (APT28) targeting high-ranking government officials Western Asia and Eastern Europe☆36Updated last year