RustyNoob-619 / 100-Days-of-YARA-2024
☆19Updated 7 months ago
Related projects ⓘ
Alternatives and complementary repositories for 100-Days-of-YARA-2024
- ☆21Updated last year
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated last year
- Method of finding interesting domains using keywords + JARMs☆13Updated last year
- ☆18Updated 7 months ago
- Placeholder for my detection repo and misc detection engineering content☆43Updated last year
- Configuration Extractors for Malware☆54Updated last month
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆62Updated 2 years ago
- Malware Analysis tools☆25Updated 2 months ago
- Modular malware analysis artifact collection and correlation framework☆52Updated 6 months ago
- Tools for offensive security of NetBackup infrastructures☆39Updated last year
- information about ransomware groups (Ransomware Analysis Notes)☆35Updated 10 months ago
- ☆34Updated last year
- SharpShareFinder is a minimalistic network share discovery POC designed to enumerate shares in Windows Active Directory networks leveragi…☆21Updated 4 months ago
- ☆15Updated 2 weeks ago
- A project created with an aim to emulate and test exfiltration of data over different network protocols.☆30Updated last year
- An Adaptive Misuse Detection System☆29Updated 2 weeks ago
- Repository for archiving Cobalt Strike configuration☆28Updated this week
- shared samples from #dailyphish and/or #apt tweets☆35Updated this week
- This is a repo for fetching Applocker event log by parsing the win-event log☆30Updated 2 years ago
- Identifies metadata of .NET binary files.☆21Updated 7 months ago
- The project will serve as a central repository for VMware Threat Analysis Unit (TAU) to share threat intelligence with the security commu…☆16Updated last year
- Hundred Days of Yara Challenge☆12Updated 2 years ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆82Updated last year
- JA4TScan is an active TCP server fingerprinting tool.☆56Updated 2 months ago
- 🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...☆22Updated 8 months ago
- A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.☆21Updated 4 months ago
- ☆50Updated 7 months ago