d00rt / emotet_protection_tools

Related projects ⓘ

Alternatives and complementary repositories for emotet_protection_tools

• Neo23x0 / exotron
  Sandbox feature upgrade with the help of wrapped samples
  ☆75Updated 6 years ago
• Neo23x0 / panopticon
  A YARA Rule Performance Measurement Tool
  ☆58Updated 8 months ago
• d00rt / emotet_network_protocol
  ☆81Updated 4 years ago
• phage-nz / infosec-bazaar
  A collection of infosec related scripts and information.
  ☆53Updated last month
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆95Updated last year
• ANSSI-FR / bits_parser
  Extract BITS jobs from QMGR queue and store them as CSV records
  ☆74Updated 4 months ago
• vysecurity / ATT-CK_Analysis
  Repository for my ATT&CK analysis research.
  ☆68Updated 5 years ago
• DissectMalware / MalwareCMDMonitor
  Shows command lines used by latest instances analyzed on Hybrid-Analysis
  ☆43Updated 6 years ago
• OTRF / API-To-Event
  A repo to document API functions mapped to security events across diverse platforms
  ☆74Updated 5 years ago
• xenoscr / atomiccaldera
  A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…
  ☆71Updated 3 years ago
• NVISOsecurity / SEC599
  SEC599 supporting GitHub repository
  ☆15Updated 5 years ago
• W3ndige / aurora
  Malware similarity platform with modularity in mind.
  ☆76Updated 3 years ago
• swisscom / PowerGRR
  PowerGRR is an API client library in PowerShell working on Windows, Linux and macOS for GRR automation and scripting.
  ☆56Updated 2 years ago
• sysopfb / Malware_Scripts
  Various scripts for different malware families
  ☆105Updated 3 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆54Updated 3 years ago
• certsocietegenerale / fame_modules
  Community modules for FAME
  ☆64Updated this week
• nerdiosity / DNSplice
  To parse ugly Microsoft DNS Logs....
  ☆40Updated 6 years ago
• CERT-Polska / training-materials
  ☆50Updated 6 years ago
• jaegeral / osint-timelines
  Providing timelines based on OSINT Reports
  ☆32Updated last year
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆34Updated 5 years ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆53Updated 3 years ago
• Neo23x0 / sysmon-version-history
  An Inofficial Sysmon Version History (Change Log)
  ☆32Updated 4 years ago
• airbus-cert / timeliner
  A rewrite of mactime, a bodyfile reader
  ☆36Updated 3 months ago
• seth1002 / tracecorn_tina
  a modified version base on Tracecorn
  ☆20Updated 5 years ago
• MinervaLabsResearch / Mystique
  Mystique may be used to discover infection markers that can be used to vaccinate endpoints against malware. It receives as input a malici…
  ☆80Updated 7 years ago
• Intrinsec / WEF-handbook-appendix
  Appendix resources for Intrinsec's "Amélioration des capacités de détection" handbook.
  ☆13Updated 6 years ago
• csababarta / volatility_plugins
  Volatility plugins created by the author
  ☆44Updated 9 years ago