a4lg / fast-ssdeep-clusLinks
Parallel ssdeep clustering kit
☆20Updated 7 years ago
Alternatives and similar repositories for fast-ssdeep-clus
Users that are interested in fast-ssdeep-clus are comparing it to the libraries listed below
Sorting:
- An example for implementation of ssdeep similarity search optimized with elasticsearch☆35Updated 7 years ago
- Generate bulk YARA rules from YAML input☆22Updated 5 years ago
- Validates yara rules and tries to repair the broken ones.☆39Updated 4 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- ☆43Updated 6 years ago
- An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree…☆60Updated 7 years ago
- ssdeep based clustering tool☆14Updated 9 years ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 6 years ago
- ☆14Updated 7 years ago
- A mapping of used malware names to commonly known family names☆62Updated 2 years ago
- ☆19Updated 6 years ago
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆53Updated 7 years ago
- Community-based integrated malware identification system☆82Updated 2 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Updated 5 years ago
- Fuzzy Hash calculated from import API of PE files☆90Updated 2 years ago
- Client library for the mwdb service by CERT Polska.☆40Updated last week
- CLI tool for testing Office documents with macros using MaliciousMacroBot☆11Updated last year
- A Python malware analysis library.☆50Updated 2 years ago
- Volatility Framework plugin to detect various types of hooks as performed by banking Trojans☆41Updated 6 years ago
- Handy scripts to speed up malware analysis☆35Updated last year
- ssdeep cluster analysis for malware files☆31Updated 5 years ago
- A tool to cluster similar executables (PEs, DEXs, and etc), extract common signature, and generate Yara patterns for malware detection.☆25Updated 6 years ago
- Export MISP attributes in Yara☆12Updated 7 years ago
- Generate a Yara rule to find base64-encoded files containg a specific keyword☆40Updated 7 years ago
- Virustotal Data to Timesketch☆17Updated 6 years ago
- A Postfix filter which takes a piped message and submits it to Cuckoo Sandbox☆11Updated 9 years ago
- Python OpenIOC Editor☆18Updated 9 years ago
- ☆41Updated 2 years ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated 2 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Updated 8 years ago