citizenlab / malware-signaturesLinks
Yara rules for malware families seen as part of targeted threats project
☆138Updated 8 years ago
Alternatives and similar repositories for malware-signatures
Users that are interested in malware-signatures are comparing it to the libraries listed below
Sorting:
- A Yara rule generator for finding related samples and hunting☆158Updated 2 years ago
- A dumb set of scripts for building a cuckoo rig☆61Updated 8 years ago
- IOC (Indicator of Compromise) Extractor: a program to help extract IOCs from text files.☆134Updated 9 years ago
- My Yara Rules Collection☆52Updated 9 years ago
- Malware Repository Framework☆99Updated 7 years ago
- CrowdStrike Feed Management System. CrowdFMS is a framework for automating collection and processing of samples from VirusTotal, by lever…☆128Updated 6 years ago
- ☆82Updated 8 years ago
- Codex Gigas malware DNA profiling search engine discovers malware patterns and characteristics assisting individuals who are attracted in…☆155Updated 5 years ago
- Set of tools for interacting with Malshare☆155Updated 5 years ago
- Differential Analysis of Malware in Memory☆212Updated 8 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Updated 7 years ago
- PE Import Hash Generator☆80Updated 7 years ago
- Command line tool for scanning streams within office documents plus xor db attack☆126Updated last year
- Modified edition of cuckoo community modules☆50Updated 8 years ago
- general purpose and malware specific analysis tools☆102Updated 9 years ago
- Reconstruct process trees from event logs☆146Updated 4 years ago
- ☆127Updated 4 months ago
- VolDiff: Malware Memory Footprint Analysis based on Volatility☆194Updated 7 years ago
- Python IOC Editor☆63Updated 10 years ago
- Malware static analysis framework☆177Updated 5 years ago
- Scripts for dealing with various ek's☆69Updated 8 years ago
- A warehouse for your malware☆134Updated 12 years ago
- Cuckoo Sandbox is an automated dynamic malware analysis system☆107Updated 5 years ago
- A modular Python application to pull intelligence about malicious files☆122Updated 4 years ago
- Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files☆118Updated last year
- stoQ Public Plugins☆71Updated 2 years ago
- ☆151Updated 6 years ago
- Various Yara signatures (possibly to be included in a release later).☆86Updated 6 years ago
- CRITs Services Collection☆184Updated 4 years ago
- Repository containing IOCs, CSV and MISP JSON from our blogs☆81Updated 3 years ago