dfir-dd / dionysos
Scanner for certain IoCs
☆11Updated 7 months ago
Related projects ⓘ
Alternatives and complementary repositories for dionysos
- Manage Your Large Team of Consultants☆12Updated 3 months ago
- Windows file metadata / forensic tool.☆15Updated last month
- Yara rules for malicious javascript files from public repositories or written by me.☆12Updated 3 years ago
- Open IOC sharing platform☆52Updated this week
- ☆21Updated last month
- NTFS Security Descriptor Stream ($Secure:$SDS) parser☆14Updated last year
- Elastic Security Labs releases☆51Updated 2 weeks ago
- Modular malware analysis artifact collection and correlation framework☆52Updated 6 months ago
- A quick reference guide for python script development in DFIR☆16Updated 7 months ago
- A specification and style guide for YARA rules☆37Updated 8 months ago
- LOKI2 - Simple IOC and YARA Scanner☆79Updated 3 months ago
- Links to malware-related YARA rules☆14Updated 2 years ago
- ShellSweeping the evil.☆52Updated 4 months ago
- Lightweight Python-Based Malware Analysis Pipeline☆29Updated 3 weeks ago
- Python based CLI for MalwareBazaar☆36Updated last week
- Provides a multi-platform Graphical User Interface for hashlookup☆12Updated 4 months ago
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆14Updated 4 years ago
- ☆64Updated last year
- Yara Based Detection Engine for web browsers☆47Updated 3 years ago
- A Windows registry file parser written in Rust☆36Updated last year
- Further investigation in to APT campaigns disclosed by private security firms and security agencies☆80Updated 2 years ago
- Sample evtx files to use for testing hayabusa detection rules☆44Updated last week
- llama is lightgrep's amazing media analyzer☆15Updated this week
- This repository contains OpenIOC rules to aid in hunting for indicators of compromise and TTPs focused on Advanced Persistent Threat grou…☆21Updated last year
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆18Updated last year
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆56Updated last year
- Threat Detection Rules (Snort/Sigma/Yara)☆13Updated 9 months ago
- A collection of my public YARA signatures for various malware families☆29Updated last month
- Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.☆35Updated 11 months ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 2 years ago