botherder / krakenLinks
Cross-platform Yara scanner written in Go
☆329Updated 2 years ago
Alternatives and similar repositories for kraken
Users that are interested in kraken are comparing it to the libraries listed below
Sorting:
- simple YARA-based IOC scanner☆169Updated this week
- IOC from articles, tweets for archives☆315Updated last year
- Deception based detection techniques mapped to the MITRE’s ATT&CK framework☆289Updated 7 years ago
- 16,432 Free Yara rules created by☆384Updated 6 years ago
- A PoC tool designed to enhance the effectiveness of your traps by spreading breadcrumbs & honeytokens across your systems to lure the att…☆273Updated 6 years ago
- YARA malware query accelerator (web frontend)☆433Updated 4 months ago
- A Go implementation of JARM☆119Updated 3 years ago
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆378Updated 3 years ago
- Detecting ATT&CK techniques & tactics for Linux☆258Updated 4 years ago
- ☆165Updated 2 years ago
- Allows you to quickly query a Windows machine for RAM artifacts☆220Updated 5 years ago
- Malware Sinkhole List in various formats☆103Updated 3 years ago
- Automated Tactics Techniques & Procedures☆255Updated 2 years ago
- Signature engine for all your logs☆171Updated last year
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Updated 7 years ago
- Test Blue Team detections without running any attack.☆271Updated last year
- Parse evtx files and detect use of the DanderSpritz eventlogedit module☆148Updated 7 years ago
- ☆174Updated 4 years ago
- A malware analysis and classification tool.☆190Updated 3 years ago
- This repository contains the website and the tools which are part of the joint research between Check Point Research and Intezer to map t…☆110Updated 5 years ago
- Automatic Yara Rule Generation☆334Updated 9 years ago
- ☆164Updated 4 years ago
- Information released publicly by NCC Group's Cyber Incident Response Team☆476Updated 3 years ago
- A network packet forensics tool for SSH☆253Updated 4 years ago
- Automatically create YARA rules from malicious documents.☆211Updated 3 years ago
- FCL (Fileless Command Lines) - Known command lines of fileless malicious executions☆472Updated 4 years ago
- Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which …☆447Updated 2 years ago
- How to Zeek Sysmon Logs!☆102Updated 3 years ago
- Personal compilation of APT malware from whitepaper releases, documents and own research☆260Updated 6 years ago
- Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies☆102Updated 4 years ago