adamkramer / rapid_env
Rapid deployment of Windows environment (files, registry keys, mutex etc) to facilitate malware analysis
☆42Updated 10 years ago
Alternatives and similar repositories for rapid_env:
Users that are interested in rapid_env are comparing it to the libraries listed below
- Recurse through a registry, identifying values with large data -- a registry malware hunter☆44Updated 8 years ago
- Scripts for dealing with various ek's☆69Updated 8 years ago
- Bit9 + Carbon Black Threat Intelligence☆82Updated 9 years ago
- ☆46Updated 7 years ago
- ☆68Updated 7 years ago
- A warehouse for your malware☆134Updated 11 years ago
- Simple shellcode decoder using unicorn-engine☆99Updated 9 years ago
- Cryptowall Tooling & Information☆35Updated 9 years ago
- Malware analysis using Docker project☆25Updated 9 years ago
- Automatically exported from code.google.com/p/malware-lu☆55Updated 5 years ago
- Detects code differentials between executables in disk and the corresponding processes/modules in memory☆115Updated 4 years ago
- A python script used to parse the SAM registry hive.☆72Updated 7 years ago
- Automated memory forensics analysis☆33Updated 5 years ago
- Volatility Plugins☆21Updated 9 years ago
- ☆19Updated 6 years ago
- An environment for comprehensive, automated analysis of web-based exploits, based on Cuckoo sandbox.☆125Updated 9 years ago
- POLAR☆73Updated 6 years ago
- Some IR notes☆73Updated 8 years ago
- Malware Repository Framework☆100Updated 7 years ago
- Various scripts helpful in sorting collections of malware samples.☆36Updated 8 years ago
- A dumb set of scripts for building a cuckoo rig☆61Updated 8 years ago
- Assorted classes and methods for indexing reports and retrieving information from an elastic index☆21Updated 8 years ago
- Unpack MIME attachments from a file and check them against virustotal.com☆45Updated 9 years ago
- Python tools for IOC (Indicator of Compromise) handling☆96Updated 3 years ago
- Scalable Binary Data Extraction in Hadoop☆143Updated 10 years ago
- Mystique may be used to discover infection markers that can be used to vaccinate endpoints against malware. It receives as input a malici…☆82Updated 7 years ago
- Proof of concept VBA code to add to Normal.dot to put restrictions on Word☆41Updated 8 years ago
- Python interface to the CRITs API☆22Updated 8 years ago
- A Rekall interactive document for a Memory Analysis workshop/course.☆43Updated 8 years ago
- A Windows Event Processing Utility☆46Updated 7 years ago