bigsnarfdude / Malware-Probabilistic-Data-Structres
NSRL BloomFilter, Mandiant BloomFilter, Hyperloglog Malware Data Structure
☆15Updated 11 years ago
Alternatives and similar repositories for Malware-Probabilistic-Data-Structres:
Users that are interested in Malware-Probabilistic-Data-Structres are comparing it to the libraries listed below
- Extract information from MISP via the API☆15Updated 8 years ago
- Command-line Interface for Binar.ly☆37Updated 8 years ago
- Useful scripts, rules etc. for use with YARA☆27Updated 4 years ago
- revised "peHash: A Novel Approach to Fast Malware Clustering"☆21Updated 8 years ago
- Multiple rules for yara-project for detect compiler/packer/protector☆33Updated 5 years ago
- ☆16Updated 10 years ago
- ssdeep based clustering tool☆14Updated 9 years ago
- Tools to enumerate Windows Firewall Hook Drivers on Windows 2000, XP and 2003☆20Updated 10 years ago
- Tools☆13Updated last year
- ☆19Updated 6 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆38Updated 9 years ago
- A tool to generate yara signatures from function blocks☆19Updated 10 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Updated 8 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- A Windows REG file to enable all default PowerShell logging on a system with PowerShell v5 installed☆16Updated 8 years ago
- Python OpenIOC Editor☆17Updated 9 years ago
- Validate IOC from MISP ; Export results and iocs to SIEM and sensors using syslog and CEF format☆14Updated 8 years ago
- Generate bulk YARA rules from YAML input☆22Updated 5 years ago
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 7 years ago
- Server for receiving autorun data from the clients☆13Updated 7 years ago
- An active domain name query tool to help keep track of domain name movements...☆15Updated 4 years ago
- Extract GUIDs from .NET assemblies☆21Updated 8 years ago
- Basic file metadata gathering script☆21Updated 3 years ago
- cuckoo sandbox patches and scripts☆15Updated 11 years ago
- Discover potential timestamps within the Windows Registry☆18Updated 10 years ago
- Plugins to add funtionality to ProcDOT. http://www.procdot.com☆23Updated last year
- The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams☆37Updated 3 years ago
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆42Updated 4 years ago
- Generate MAEC XML from Ero Carrera's pefile output☆15Updated 8 years ago
- Maltego Transform to put entities into MISP events☆26Updated 3 years ago