decalage2 / exefilter
ExeFilter is an open-source tool and framework to filter file formats in e-mails, web pages or files. It detects many common file formats and can remove active content (scripts, macros, etc) according to a configurable policy.
☆67Updated 3 years ago
Alternatives and similar repositories for exefilter:
Users that are interested in exefilter are comparing it to the libraries listed below
- Yara Scanner For IMAP Feeds and saved Streams☆28Updated 5 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆105Updated 6 years ago
- Yara rules for detecting malware☆23Updated 4 months ago
- Create an entire YARA rule via Python? Whhhhhhaatttt?☆72Updated 6 years ago
- Validates yara rules and tries to repair the broken ones.☆39Updated 4 years ago
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆53Updated 6 years ago
- Generate bulk YARA rules from YAML input☆22Updated 4 years ago
- Virustotal Data to Timesketch☆17Updated 5 years ago
- threat-intelligence.eu website and repository of information about open standards, documents, methodologies and processes in threat intel…☆48Updated 2 years ago
- Community modules for FAME☆65Updated 2 months ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- ☆24Updated 2 years ago
- Passive DNS Common Output Format☆36Updated 4 months ago
- ☆50Updated 6 years ago
- Yara rules to be used with the Burp Yara-Scanner extension☆45Updated 2 years ago
- Yara syntax highlighting☆25Updated 3 years ago
- Event Log Analysis Tools☆29Updated 8 years ago
- Rekall is an endpoint security solution.☆39Updated 6 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Updated 4 years ago
- Converts the Clamav Virus Database definitions to YARA rules [GOLANG]☆52Updated 3 years ago
- Sandbox feature upgrade with the help of wrapped samples☆75Updated 6 years ago
- Volatility Framework plugin to detect various types of hooks as performed by banking Trojans☆40Updated 6 years ago
- This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…☆35Updated 5 years ago
- Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists☆32Updated 2 weeks ago
- Malice Yara Plugin☆30Updated 5 years ago
- A mapping of used malware names to commonly known family names☆62Updated last year
- This python scripts can calculate the WHOIS Similarity Distance between two given domains.☆30Updated 2 years ago
- Python tool and library to help analyze files during malware triage and analysis.☆77Updated 4 years ago
- CRL Monitor - X.509 Certificate Revocation List monitoring and X.509/Subject caching☆34Updated 3 years ago