amir9339 / volatility-docker

Related projects: ⓘ

• EC-DIGIT-CSIRC / openai-cti-summarizer
  Small web frontend for using openAI's GPT-3.5 and GPT-4's API
  ☆50Updated last month
• typosquatter / ail-typo-website
  Website for ail-typo-squatting library
  ☆48Updated 3 months ago
• fox-it / skrapa
  A zero dependency and customizable Python library for scanning Windows and Linux process memory.
  ☆61Updated 7 months ago
• shabarkin / pointer
  Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.
  ☆65Updated 2 years ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆74Updated 2 years ago
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆72Updated 2 years ago
• HuskyHacks / MalAPIReader
  Reads and prints information from the website MalAPI.io
  ☆38Updated 2 years ago
• ezaspy / elrond
  Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.
  ☆29Updated 2 months ago
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆56Updated 2 weeks ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆62Updated 2 years ago
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆57Updated last year
• sk4la / volatility3-docker
  Volatility, on Docker 🐳
  ☆23Updated 2 months ago
• theflakes / Linux_Forensic_Harvester
  Harvest Linux forensic data for operational triage of an event.
  ☆51Updated 3 months ago
• NVISOsecurity / nviso-cti
  ☆40Updated 5 months ago
• swisscom / ArtifactCollectionMatrix
  Forensic Artifact Collection Tool Matrix
  ☆70Updated 2 years ago
• d4rk-d4nph3 / Ransim
  Ransomware Simulator for testing Blue Team Detections
  ☆34Updated 2 years ago
• BinaryDefense / beacon-fronting
  A simple command line program to help defender test their detections for network beacon patterns and domain fronting
  ☆65Updated 2 years ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆49Updated 2 months ago
• dsnezhkov / racketeer
  ☆68Updated 2 years ago
• mthcht / ThreatHunting-Keywords-yara-rules
  yara detection rules for hunting with the threathunting-keywords project
  ☆75Updated last week
• righel / log4shell_nse
  nse script to inject jndi payloads
  ☆45Updated 2 years ago
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆86Updated last year
• cado-security / rip_raw
  Rip Raw is a small tool to analyse the memory of compromised Linux systems.
  ☆131Updated 2 years ago
• MHaggis / ShellSweep
  ShellSweeping the evil.
  ☆49Updated 3 months ago
• ssnkhan / adversarial-threat-modelling
  Supporting material for my presentation "Adversarial Threat Modelling — A Practical Approach to Purple Teaming in the Enterprise"
  ☆50Updated 2 years ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆68Updated 6 months ago
• malienist / lupo
  Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
  ☆104Updated 2 years ago
• imp0rtp3 / Yobi
  Yara Based Detection Engine for web browsers
  ☆47Updated 3 years ago
• silverfort-open-source / latma
  ☆78Updated last year
• Neo23x0 / tiny-shells
  All kinds of tiny shells
  ☆59Updated last year