botherder / kraken
Cross-platform Yara scanner written in Go
☆329Updated 2 years ago
Alternatives and similar repositories for kraken:
Users that are interested in kraken are comparing it to the libraries listed below
- simple YARA-based IOC scanner☆169Updated last month
- 16,432 Free Yara rules created by☆383Updated 5 years ago
- Deception based detection techniques mapped to the MITRE’s ATT&CK framework☆289Updated 7 years ago
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆372Updated 2 years ago
- IOC from articles, tweets for archives☆313Updated last year
- Detecting ATT&CK techniques & tactics for Linux☆258Updated 4 years ago
- FCL (Fileless Command Lines) - Known command lines of fileless malicious executions☆466Updated 3 years ago
- A PoC tool designed to enhance the effectiveness of your traps by spreading breadcrumbs & honeytokens across your systems to lure the att…☆272Updated 6 years ago
- Allows you to quickly query a Windows machine for RAM artifacts☆220Updated 4 years ago
- Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which …☆449Updated 2 years ago
- Automatic Yara Rule Generation☆332Updated 9 years ago
- Information released publicly by NCC Group's Cyber Incident Response Team☆477Updated 3 years ago
- Parse evtx files and detect use of the DanderSpritz eventlogedit module☆148Updated 7 years ago
- Differential Analysis of Malware in Memory☆211Updated 7 years ago
- A PowerShell script to interact with the MITRE ATT&CK Framework via its own API☆367Updated 6 years ago
- Collecting & Hunting for IOCs with gusto and style☆237Updated 3 years ago
- Tool Analysis Result Sheet☆347Updated 7 years ago
- Test Blue Team detections without running any attack.☆272Updated 10 months ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆106Updated 7 years ago
- The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).☆543Updated last year
- Personal compilation of APT malware from whitepaper releases, documents and own research