RussianPanda95 / Configuration_extractorsLinks
Configuration Extractors for Malware
☆111Updated 4 months ago
Alternatives and similar repositories for Configuration_extractors
Users that are interested in Configuration_extractors are comparing it to the libraries listed below
Sorting:
- Repository of Yara Rules☆115Updated 4 months ago
- Python tool to check rootkits in Windows kernel☆199Updated last week
- A C# based tool for analysing malicious OneNote documents☆114Updated 2 years ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆83Updated 2 years ago
- ☆113Updated last month
- Yara Rules for Modern Malware☆79Updated last year
- A ProcessMonitor visualization application written in rust.☆183Updated 2 years ago
- A small program written in C that is designed to load 32/64-bit shellcode and allow for execution or debugging. Can also output PE files …☆158Updated last year
- Powershell Linter☆80Updated 3 weeks ago
- A collection of small scripts and tools for deobfuscation and malware analysis.☆66Updated 2 years ago
- A collection of tools and detections for the Sliver C2 Frameworj☆128Updated 2 years ago
- Some of my Malware Analysis writeups☆46Updated 2 years ago
- IOCs and notes related to malware☆25Updated last month
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆46Updated 2 years ago
- MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.☆217Updated 2 years ago
- ☆68Updated 6 months ago
- ☆38Updated 6 months ago
- This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.☆91Updated 11 months ago
- ☆37Updated last year
- ☆27Updated 9 months ago
- Virus.xcheck is a Python tool designed to bulk verify the existence of file hashes in the Virus Exchange database and fetch download URLs…☆55Updated 4 months ago
- Malware Analysis tools☆26Updated 11 months ago
- ☆29Updated last year
- Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …☆37Updated 6 months ago
- A robust, multiprocessing-capable, multi-family RAT config parser/config extractor for AsyncRAT, DcRAT, VenomRAT, QuasarRAT, XWorm, Xeno …☆50Updated 3 weeks ago
- ☆41Updated this week
- information about ransomware groups (Ransomware Analysis Notes)☆38Updated last year
- ☆68Updated 2 years ago
- ☆24Updated 6 months ago
- ☆82Updated 9 months ago