Scripts and rulesets for analysing the Winnti malware
☆24Jul 24, 2019Updated 6 years ago
Alternatives and similar repositories for 2019-winnti-analyse
Users that are interested in 2019-winnti-analyse are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A project in Golang that will create prefix-based magic MD5 hashes for type juggling.☆21Jul 29, 2018Updated 7 years ago
- QEMU with rVMI extensions☆25Jul 25, 2017Updated 8 years ago
- a shared short domain for XSS and other hacks☆32Mar 3, 2022Updated 4 years ago
- pocket guide for core threat hunting concepts☆23May 6, 2020Updated 6 years ago
- Nmap Script to scan for Winnti infections☆71May 22, 2018Updated 8 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Elasticsearch/Kibana environment and log data for Sigma workshop☆27Dec 20, 2019Updated 6 years ago
- Socks5 proxy server by golang☆11Oct 10, 2019Updated 6 years ago
- ☆12Nov 3, 2020Updated 5 years ago
- ☆15Oct 25, 2022Updated 3 years ago
- A boundle of useful scripts☆19Apr 21, 2026Updated last month
- Basic command line, text-based, shellcode debugger.☆92Jul 2, 2017Updated 8 years ago
- ☆136Jan 24, 2019Updated 7 years ago
- Thor Artifacts for Velociraptor☆19Dec 2, 2025Updated 5 months ago
- dawg the hallway monitor - monitor operating system changes and analyze introduced attack surface when installing software☆55Nov 14, 2019Updated 6 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- Binary String Toolkit (BST). Quickly and easily convert binary strings for all your exploit development needs.☆23Jul 27, 2018Updated 7 years ago
- Multicore EVTX to Elasticsearch ingestor for incident responders.☆14May 12, 2021Updated 5 years ago
- Encase Script to parse harddrive for MFT data☆16Jun 17, 2016Updated 9 years ago
- Various short scripts and tools used for Digital Forensics☆14Apr 13, 2025Updated last year
- Threat Alert Logic Repository☆93Feb 7, 2019Updated 7 years ago
- Simple shellcode decoder using unicorn-engine☆100Oct 17, 2015Updated 10 years ago
- NSRL BloomFilter, Mandiant BloomFilter, Hyperloglog Malware Data Structure☆15Mar 14, 2014Updated 12 years ago
- ☆12Sep 4, 2013Updated 12 years ago
- Burp plugin that clusters responses to show an overview of received responses☆15Jun 7, 2019Updated 6 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A PowerShell module for creating and removing Loopback Network Adapters on Windows using Device Conslole (DevCon.exe)☆15Feb 26, 2021Updated 5 years ago
- These FLARE-VM configuration files are designed to be help setup a purpose-built installation, remove unnecessary packages to help stream…☆16Apr 10, 2024Updated 2 years ago
- PowerShell tool to triage systems☆12May 17, 2023Updated 3 years ago
- An advanced Twitter scraping & OSINT tool written in Python that doesn't use Twitter's API, allowing you to scrape a user's followers, fo…☆13Aug 19, 2022Updated 3 years ago
- Historical Observations of Actionable Reputation Data☆13Jun 26, 2018Updated 7 years ago
- Various public documents, whitepapers and articles about APT campaigns☆55Apr 1, 2016Updated 10 years ago
- A C# Tool to gather information about email breaches☆16Dec 21, 2023Updated 2 years ago
- GCNotify is an Outlook addin for quickly forwarding mail as attachment to a pre-defined e-mail address.☆12Jan 17, 2023Updated 3 years ago
- Simple yara decompiler☆17Apr 8, 2017Updated 9 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Windows Application Attack Surface Analyzer☆25Feb 22, 2024Updated 2 years ago
- mOrc is a post-exploitation framework for macOS written in Bash☆19Apr 19, 2023Updated 3 years ago
- Upload a PDF to the reMarkable over SSH, useful for large PDFs that cause the web interface to hang or timeout☆15Mar 17, 2021Updated 5 years ago
- ☆23Oct 9, 2024Updated last year
- bridge for Philips Hue to MQTT, written in Go☆11Jul 18, 2023Updated 2 years ago
- A browser extension that seamlessly integrates your yara match notifications into VirusTotal Intelligence.☆17Feb 8, 2015Updated 11 years ago
- Splunk Technology Add-On (TA) for collecting ETW events from Windows systems☆16Dec 8, 2022Updated 3 years ago