Sh3lldor / PVTLinks
PCAP visualization tool
☆103Updated 2 years ago
Alternatives and similar repositories for PVT
Users that are interested in PVT are comparing it to the libraries listed below
Sorting:
- The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access…☆65Updated last week
- A collection of tools to interact with Microsoft Security Response Center API☆98Updated last year
- This repository contains procedures found in the Feb 2022 conti leaks. They were taken from the "manual_teams_c" rocketchat channel in th…☆87Updated 3 years ago
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆139Updated last year
- All kinds of tiny shells☆58Updated 2 years ago
- ☆190Updated 2 years ago
- Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.☆185Updated this week
- A ProcessMonitor visualization application written in rust.☆181Updated last year
- The Windows Malware Analysis Reversing Core Tools☆95Updated 4 years ago
- A tool to find folders excluded from AV real-time scanning using a time oracle☆233Updated last year
- Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR☆242Updated 2 months ago
- Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.☆249Updated 2 years ago
- A prototype malware C2 channel using x509 certificates over mTLS☆153Updated last year
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆95Updated 2 years ago
- LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…☆124Updated 5 months ago
- ☆201Updated 7 months ago
- A golang CLI tool to download malware from a variety of sources.☆148Updated last week
- ☆250Updated last year
- Yara Rules for Modern Malware☆77Updated last year
- A repository that maps commonly used attacks using MSRPC protocols to ATT&CK☆331Updated 2 years ago
- A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files☆124Updated last year
- Blueteam operational triage registry hunting/forensic tool.☆148Updated 2 years ago
- Active C&C Detector☆154Updated last year
- A guide on how to write fast and memory friendly YARA rules☆144Updated 4 months ago
- A python script developed to process Windows memory images based on triage type.☆262Updated last year
- ☆55Updated 8 months ago
- ☆208Updated 3 years ago
- Rules Shared by the Community from 100 Days of YARA 2023☆77Updated 2 years ago
- Python library for dissecting and parsing Cobalt Strike related data such as Beacon payloads and Malleable C2 Profiles☆167Updated this week
- A zero dependency and customizable Python library for scanning Windows and Linux process memory.☆66Updated last year