ahlashkari / VolMemLyzerLinks
VolMemLyzer (Volatility Memory Analyzer) is a feature extraction module which use Volatility plugins to extract memory features to generate a CSV file for each memory snapshot.
☆35Updated this week
Alternatives and similar repositories for VolMemLyzer
Users that are interested in VolMemLyzer are comparing it to the libraries listed below
Sorting:
- Various capabilities for static malware analysis.☆79Updated last year
- This repository contains OpenIOC rules to aid in hunting for indicators of compromise and TTPs focused on Advanced Persistent Threat grou…☆25Updated last year
- MAEC Schemas and Schema Development☆88Updated 5 years ago
- The DFRWS 2023 challenge (The Troubled Elevator) takes a deep dive into the domain of Industrial Control Systems (ICS), specifically foc…☆54Updated last year
- ☆154Updated 2 years ago
- Research indicators and detection rules☆66Updated last year
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆106Updated 4 months ago
- Rules Shared by the Community from 100 Days of YARA 2023☆78Updated 2 years ago
- YARA rule analyzer to improve rule quality and performance☆103Updated 5 months ago
- BlackBerry Threat Research & Intelligence☆99Updated last year
- JPCERT/CC public YARA rules repository☆110Updated 9 months ago
- Hunt malware with Volatility☆47Updated 2 months ago
- Further investigation in to APT campaigns disclosed by private security firms and security agencies☆86Updated 3 years ago
- Powershell sandboxing utility☆19Updated 2 weeks ago
- Python based CLI for MalwareBazaar☆37Updated last month
- The Windows Malware Analysis Reversing Core Tools☆96Updated 4 years ago
- Repository with Sample threat hunting notebooks on Security Event Log Data Sources☆66Updated 2 years ago
- Random hunting ordiented yara rules☆97Updated 2 years ago
- Source Code for 'Malware Analysis and Detection Engineering' by Abhijit Mohanta and Anoop Saldanha☆121Updated 2 years ago
- Augmentation to Machine Readable CTI☆32Updated this week
- Detection Engineering with YARA☆87Updated last year
- This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.☆116Updated last year
- Security ML models encoded as Yara rules☆213Updated 2 years ago
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated last year
- File analysis and management framework.☆86Updated 2 years ago
- Security Content for the PEAK Threat Hunting Framework☆34Updated last year
- Community modules for CAPE Sandbox☆103Updated 2 weeks ago
- Hatching Triage public command-line utility and API library.☆71Updated last year
- Library of threat hunts to get any user started!☆45Updated 5 years ago
- An Adaptive Misuse Detection System☆44Updated 10 months ago