Sh3lldor / PVTLinks
PCAP visualization tool
☆103Updated 2 years ago
Alternatives and similar repositories for PVT
Users that are interested in PVT are comparing it to the libraries listed below
Sorting:
- Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.☆253Updated 2 years ago
- A collection of tools to interact with Microsoft Security Response Center API☆99Updated last year
- A zero dependency and customizable Python library for scanning Windows and Linux process memory.☆66Updated last year
- All kinds of tiny shells☆58Updated 2 years ago
- LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…☆129Updated 6 months ago
- This repository contains procedures found in the Feb 2022 conti leaks. They were taken from the "manual_teams_c" rocketchat channel in th…☆87Updated 3 years ago
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆138Updated last year
- ☆208Updated last month
- Fraktal's Ransomware Emulator☆102Updated last year
- A ProcessMonitor visualization application written in rust.☆181Updated 2 years ago
- A guide on how to write fast and memory friendly YARA rules☆150Updated 5 months ago
- A golang CLI tool to download malware from a variety of sources.☆148Updated last month
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆169Updated 2 years ago
- Rules Shared by the Community from 100 Days of YARA 2023☆78Updated 2 years ago
- The Windows Malware Analysis Reversing Core Tools☆96Updated 4 years ago
- ☆55Updated 9 months ago
- ☆203Updated 9 months ago
- A repo to support the book☆108Updated 4 years ago
- Visually inspect and force decode YARA and regex matches found in both binary and text data. With Colors.☆136Updated last week
- Algorithme d'apprentissage statistique permettant de créer un modèle sur les lignes de commandes des évènements "Création de Processus", …☆83Updated last year
- A C# based tool for analysing malicious OneNote documents☆114Updated 2 years ago
- A Python package is used to execute Atomic Red Team tests (Atomics) across multiple operating system environments.☆134Updated last year
- BSidesRoc 2022 Linux Malware/Forensics Course☆76Updated 3 years ago
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆96Updated 2 years ago
- A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck☆130Updated last year
- The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access…☆71Updated last week
- Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.☆190Updated this week
- Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR☆245Updated 4 months ago
- Reads and prints information from the website MalAPI.io☆38Updated 3 years ago
- A prototype malware C2 channel using x509 certificates over mTLS☆153Updated last year