d00rt / emotet_network_protocol

Related projects ⓘ

Alternatives and complementary repositories for emotet_network_protocol

• d00rt / emotet_research
  ☆134Updated 5 years ago
• W3ndige / aurora
  Malware similarity platform with modularity in mind.
  ☆76Updated 3 years ago
• sysopfb / Malware_Scripts
  Various scripts for different malware families
  ☆105Updated 3 years ago
• mlodic / ursnif_beacon_decryptor
  Ursnif beacon decryptor
  ☆27Updated last year
• Neo23x0 / ImpHash-Generator
  PE Import Hash Generator
  ☆74Updated 7 years ago
• karttoon / binsequencer
  BinSequencer is a script designed to find a common pattern of bytes within a set of samples and generate a YARA rule from the identified…
  ☆74Updated 2 years ago
• MITRECND / malchive
  Various capabilities for static malware analysis.
  ☆75Updated 2 months ago
• tehsyntx / loffice
  Lazy Office Analyzer
  ☆118Updated 7 years ago
• Tera0017 / TAFOF-Unpacker
  TA505 unpacker Python 2.7
  ☆46Updated 4 years ago
• seth1002 / tracecorn_tina
  a modified version base on Tracecorn
  ☆20Updated 5 years ago
• PonyPC / myaut_contrib
  mod to myaut2exe decompiler
  ☆13Updated 7 years ago
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆95Updated last year
• fxb-cocacoding / yara-signator
  Automatic YARA rule generation for Malpedia
  ☆154Updated 2 years ago
• stvemillertime / ConventionEngine
  ConventionEngine - A Yara Rulepack for PDB Path Hunting
  ☆37Updated last year
• Big5-sec / SourceFu
  hopefully a source-to-source deobfuscator, aiming at deobfuscating common scripts languages such as Powershell, VBA and Javascript. Curre…
  ☆40Updated 5 years ago
• silence-is-best / c2db
  c2 traffic
  ☆188Updated last year
• MAECProject / malware-behaviors
  A taxonomy and dictionary of malware behaviors.
  ☆42Updated 5 years ago
• sysopfb / malware_decoders
  Static based decoders for malware samples
  ☆93Updated 4 years ago
• CERT-Polska / training-mwdb
  MWDB exercises
  ☆19Updated 5 months ago
• mandiant / Volatility-Plugins
  ☆82Updated 8 years ago
• monnappa22 / HollowFind
  Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …
  ☆130Updated 2 years ago
• adamkramer / jmp2it
  Transfer EIP control to shellcode during malware analysis investigation
  ☆73Updated 10 years ago
• ANSSI-FR / bits_parser
  Extract BITS jobs from QMGR queue and store them as CSV records
  ☆74Updated 4 months ago
• csababarta / volatility_plugins
  Volatility plugins created by the author
  ☆44Updated 9 years ago
• x64dbg / yarasigs
  Various Yara signatures (possibly to be included in a release later).
  ☆84Updated 5 years ago
• 3c7 / yaramanager
  Simple yara rule manager
  ☆65Updated last year
• reb311ion / CapaExplorer
  Capa analysis importer for Ghidra.
  ☆61Updated 3 years ago
• CERT-Polska / mwdblib
  Client library for the mwdb service by CERT Polska.
  ☆40Updated 5 months ago
• PoorBillionaire / Windows-Prefetch-Parser
  Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files
  ☆115Updated 5 months ago