SparkITSolutions / phoenix
Cuckoo Sandbox is an automated dynamic malware analysis system
☆107Updated 4 years ago
Alternatives and similar repositories for phoenix:
Users that are interested in phoenix are comparing it to the libraries listed below
- Collecting & Hunting for IOCs with gusto and style��☆116Updated 6 years ago
- Python script to decode common encoded PowerShell scripts☆215Updated 6 years ago
- Mystique may be used to discover infection markers that can be used to vaccinate endpoints against malware. It receives as input a malici…☆81Updated 7 years ago
- Splunk Boss of the SOC v1 data set.☆111Updated 6 years ago
- PowerShell No Agent Hunting☆109Updated 6 years ago
- CrowdStrike Feed Management System. CrowdFMS is a framework for automating collection and processing of samples from VirusTotal, by lever…☆129Updated 6 years ago
- InvestigationPlaybookSpec☆72Updated 7 years ago
- Extension to Cuckoo Sandbox open source projects, adds support to AWS cloud functionalities and enables running emulation on auto-scaling…☆136Updated 2 years ago
- Page File analysis tools.☆124Updated 9 years ago
- Malware Repository Framework☆100Updated 6 years ago
- Threat Alert Logic Repository☆91Updated 5 years ago
- Tool to extract indicators of compromise from security reports in PDF format☆72Updated 7 months ago
- A collection of infosec related scripts and information.☆53Updated 3 months ago
- ☆82Updated 8 years ago
- ☆150Updated 6 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 5 years ago
- Repository of scripts/tools that may be useful in Security Operations Centres (SOC)☆54Updated 4 years ago
- All the IOC's I have gathered which are used directly involved coronavirus / covid-19 / SARS-CoV-2 cyber attack campaigns☆65Updated 3 years ago
- "Evolving AppCompat/AmCache data analysis beyond grep"☆199Updated 3 years ago
- A Yara rule generator for finding related samples and hunting☆157Updated 2 years ago
- Command line tool for scanning streams within office documents plus xor db attack☆126Updated last year
- Invoke-LiveResponse☆146Updated 2 years ago
- CB API scripts for IR, administration, etc.☆32Updated 5 years ago
- Some IR notes☆73Updated 8 years ago
- Collection of useful, up to date, Carbon Black Response Queries☆83Updated 4 years ago
- Reconstruct process trees from event logs☆146Updated 4 years ago
- ☆348Updated 3 years ago
- VirusTotal Intelligence Notification Puller☆28Updated 8 years ago
- Assimilate is a series of scripts for using the Naïve Bayes algorithm to find potential malicious activity in HTTP headers☆90Updated 7 years ago
- Lazy Office Analyzer☆119Updated 7 years ago