decalage2 / ViperMonkey
A VBA parser and emulation engine to analyze malicious macros.
☆1,044Updated 2 months ago
Related projects: ⓘ
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆568Updated 4 months ago
- Noriben - Portable, Simple, Malware Analysis Sandbox☆1,101Updated 9 months ago
- Malware Configuration And Payload Extraction☆743Updated last year
- yarGen is a generator for YARA rules☆1,533Updated 3 months ago
- PowerShell script for deobfuscating encoded PowerShell scripts☆416Updated 3 years ago
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆697Updated last year
- Indicators from Unit 42 Public Reports☆696Updated last week
- ☆708Updated last year
- Indicators of Compromises (IOC) of our various investigations☆1,602Updated last week
- PowerShell Obfuscation Detection Framework☆719Updated 9 months ago
- YARA Rules I come across on the internet☆327Updated 5 months ago
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆519Updated this week
- Yara Rule Analyzer and Statistics☆356Updated last year
- ☆1,048Updated 5 years ago
- Volatility plugins developed and maintained by the community☆339Updated 3 years ago
- DRAKVUF Sandbox - automated hypervisor-level malware analysis system☆1,032Updated last week
- Online hash checker for Virustotal and other services☆808Updated 4 months ago
- A static analyzer for PE executables.☆1,007Updated 8 months ago
- A VBA p-code disassembler☆450Updated 3 years ago
- YARA malware query accelerator (web frontend)☆407Updated this week
- Kaspersky's GReAT KLara☆694Updated last month
- RDP Bitmap Cache parser☆463Updated 9 months ago
- Volatility plugin for extracts configuration data of known malware☆481Updated 8 months ago
- Please no pull requests for this repository. Thanks!☆1,957Updated last week
- FakeNet-NG - Next Generation Dynamic Network Analysis Tool☆1,763Updated 3 months ago
- Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.☆895Updated 9 months ago
- Utilities for MITRE™ ATT&CK☆1,008Updated 3 months ago
- A collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net☆881Updated 5 months ago
- FAME Automates Malware Evaluation☆845Updated 2 weeks ago
- YARA signature and IOC database for my scanners and tools☆2,445Updated this week