dfir-dd / dionysos

Related projects ⓘ

Alternatives and complementary repositories for dionysos

• Cainor / Calendarinho
  Manage Your Large Team of Consultants
  ☆12Updated 3 months ago
• theflakes / fmd
  Windows file metadata / forensic tool.
  ☆15Updated last month
• imp0rtp3 / js-yara-rules
  Yara rules for malicious javascript files from public repositories or written by me.
  ☆12Updated 3 years ago
• abusech / ThreatFox
  Open IOC sharing platform
  ☆52Updated this week
• herosi / triage-collector
  ☆21Updated last month
• AbdulRhmanAlfaifi / SDSParser-rs
  NTFS Security Descriptor Stream ($Secure:$SDS) parser
  ☆14Updated last year
• elastic / labs-releases
  Elastic Security Labs releases
  ☆51Updated 2 weeks ago
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆52Updated 6 months ago
• chapinb / python-forensics-handbook
  A quick reference guide for python script development in DFIR
  ☆16Updated 7 months ago
• Neo23x0 / YARA-Style-Guide
  A specification and style guide for YARA rules
  ☆37Updated 8 months ago
• Neo23x0 / Loki2
  LOKI2 - Simple IOC and YARA Scanner
  ☆79Updated 3 months ago
• StefanKelm / yara-rules
  Links to malware-related YARA rules
  ☆14Updated 2 years ago
• MHaggis / ShellSweep
  ShellSweeping the evil.
  ☆52Updated 4 months ago
• threatcat-ch / malware-analysis-pipeline
  Lightweight Python-Based Malware Analysis Pipeline
  ☆29Updated 3 weeks ago
• 3c7 / bazaar
  Python based CLI for MalwareBazaar
  ☆36Updated last week
• hashlookup / hashlookup-gui
  Provides a multi-platform Graphical User Interface for hashlookup
  ☆12Updated 4 months ago
• yasser-alghamdi / winterfell-hunt
  Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…
  ☆14Updated 4 years ago
• MalGamy / YARA_Rules
  ☆64Updated last year
• imp0rtp3 / Yobi
  Yara Based Detection Engine for web browsers
  ☆47Updated 3 years ago
• strozfriedberg / notatin
  A Windows registry file parser written in Rust
  ☆36Updated last year
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆80Updated 2 years ago
• Yamato-Security / hayabusa-sample-evtx
  Sample evtx files to use for testing hayabusa detection rules
  ☆44Updated last week
• strozfriedberg / llama
  llama is lightgrep's amazing media analyzer
  ☆15Updated this week
• dfir-ronin / APT-OpenIOC-Detection-Rules
  This repository contains OpenIOC rules to aid in hunting for indicators of compromise and TTPs focused on Advanced Persistent Threat grou…
  ☆21Updated last year
• mdecrevoisier / Windows-authentication-brutforce-cheatsheet
  Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.
  ☆18Updated last year
• g-les / 100DaysofYARA
  100 Days of YARA to be updated with rules & ideas as the year progresses
  ☆56Updated last year
• Cluster25 / detection
  Threat Detection Rules (Snort/Sigma/Yara)
  ☆13Updated 9 months ago
• jeFF0Falltrades / YARA-Signatures
  A collection of my public YARA signatures for various malware families
  ☆29Updated last month
• thremulation-station / thremulation-station
  Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.
  ☆35Updated 11 months ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 2 years ago