decalage2 / exefilter
ExeFilter is an open-source tool and framework to filter file formats in e-mails, web pages or files. It detects many common file formats and can remove active content (scripts, macros, etc) according to a configurable policy.
☆66Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for exefilter
- Yara Scanner For IMAP Feeds and saved Streams☆28Updated 5 years ago
- Multiple rules for yara-project for detect compiler/packer/protector☆33Updated 4 years ago
- Yara rules for detecting malware☆23Updated 2 months ago
- Malice Yara Plugin☆30Updated 5 years ago
- Community modules for FAME☆64Updated 2 weeks ago
- Command-line Interface for Binar.ly☆37Updated 7 years ago
- Yara syntax highlighting☆24Updated 3 years ago
- CRL Monitor - X.509 Certificate Revocation List monitoring and X.509/Subject caching☆33Updated 3 years ago
- This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…☆35Updated 5 years ago
- A Postfix filter which takes a piped message and submits it to Cuckoo Sandbox☆11Updated 8 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆15Updated 3 years ago
- Validates yara rules and tries to repair the broken ones.☆39Updated 4 years ago
- Generate bulk YARA rules from YAML input☆22Updated 4 years ago
- Command Line STDOUT Colorer☆29Updated 3 years ago
- Tools☆13Updated last year
- Malware Classifier From Network Captures☆81Updated 7 years ago
- Sample staging & detonation utility to be used in combination with Cuckoo Sandbox.☆83Updated 11 months ago
- Event Log Analysis Tools☆29Updated 8 years ago
- This repository is a curated list of pro bono incident response entities.☆19Updated last year
- JoeSandbox-Bro is a simple bro script which extracts files from your internet connection and analyzes them automatically on Joe Sandbox☆44Updated 5 years ago
- Passive DNS Common Output Format☆36Updated 2 months ago
- Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…☆49Updated 7 years ago
- ☆19Updated 6 years ago
- DocBleachShell is the integration of the great DocBleach, https://github.com/docbleach/DocBleach Content Disarm and Reconstruction tool i…☆21Updated 2 years ago
- Performs OCR on image files and scans them for matches to YARA rules☆40Updated 6 years ago
- Virustotal Data to Timesketch☆17Updated 5 years ago
- Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.☆97Updated 10 years ago