Te-k / analyst-scripts
Scripts to analyze stuff
☆141Updated last week
Related projects: ⓘ
- Personal compilation of APT malware from whitepaper releases, documents and own research☆253Updated 5 years ago
- Miscellaneous Malware RE☆195Updated 2 years ago
- Set of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.☆166Updated 2 months ago
- Open platform for modelling, collection and exchange of knowledge☆154Updated 6 months ago
- Awesome VirusTotal Intelligence Search Queries☆325Updated last year
- A VBA parser and emulation engine to analyze malicious macros.☆90Updated this week
- A modern Python-3-based alternative to RegRipper☆184Updated 11 months ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆94Updated 3 months ago
- Differential Analysis of Malware in Memory☆209Updated 7 years ago
- Valhalla API Client☆62Updated last year
- For all these times you're asking yourself "what is this panel again?"☆251Updated last year
- PROJECT PAUSED 1/11/22, Tracking Threat Actor Emails in Phishing Kits. CC @PhishKitTracker on twitter if you find a #threatactoremail in …☆98Updated 2 years ago
- Python script to decode common encoded PowerShell scripts☆214Updated 6 years ago
- Community modules for FAME☆63Updated 2 weeks ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆102Updated 6 years ago
- Set of Yara rules for finding files using magics headers☆134Updated 4 years ago
- Deception based detection techniques mapped to the MITRE’s ATT&CK framework☆280Updated 6 years ago
- Tools to interact with APTnotes reporting/index.☆94Updated 3 years ago
- Cuckoo running in a nested hypervisor☆128Updated 4 years ago
- repository of tools & resources of the MMD team☆131Updated 2 years ago
- Malware Analysis, Threat Intelligence and Reverse Engineering: LABS☆80Updated 3 years ago
- Collecting & Hunting for IOCs with gusto and style☆235Updated 3 years ago
- A tool designed to traverse phishing URL paths to search for phishing kit source code.☆89Updated last year
- EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.☆180Updated 4 years ago
- Automated Tactics Techniques & Procedures☆251Updated last year
- Various scripts for different malware families☆106Updated 3 years ago
- A toolkit for Security Researchers☆124Updated 5 years ago
- A malware analysis and classification tool.☆193Updated 2 years ago
- snake - a malware storage zoo☆217Updated last year
- Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …☆128Updated last year