dfir-dd / dionysos
Scanner for certain IoCs
☆11Updated 2 months ago
Alternatives and similar repositories for dionysos:
Users that are interested in dionysos are comparing it to the libraries listed below
- Manage Your Large Team of Consultants☆11Updated 2 months ago
- NTFS Security Descriptor Stream ($Secure:$SDS) parser☆14Updated 2 years ago
- ☆19Updated 2 years ago
- lnk_parser is a full rust implementation to parse windows LNK files☆18Updated 3 months ago
- Windows file metadata / forensic tool.☆18Updated 7 months ago
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- Links to malware-related YARA rules☆15Updated 2 years ago
- Threat Detection Rules (Snort/Sigma/Yara)☆13Updated last year
- macOS Artifacts☆29Updated last month
- Various PowerShells scripts I've made (or others have made) to automate some of the boring stuff in my everyday DFIR journey!☆45Updated 7 months ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Updated 2 years ago
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆15Updated 4 years ago
- Yara rules for malicious javascript files from public repositories or written by me.☆13Updated 3 years ago
- ☆22Updated 6 months ago
- ☆20Updated last month
- Alternative YARA scanning engine☆70Updated 2 years ago
- Plugins for parsing CSV files in Timeline Explorer. This project allows for anyone to add more supported files (i,e. they get a Line #/ta…☆25Updated last week
- Python based CLI for MalwareBazaar☆37Updated 5 months ago
- A small util to brute-force prefetch hashes☆76Updated 2 years ago
- A pySigma wrapper and langchain toolkit for automatic rule creation/translation☆78Updated 2 weeks ago
- A Windows registry file parser written in Rust☆37Updated last year
- YARA rule analyzer to improve rule quality and performance☆98Updated 2 weeks ago
- Quick ESXi Log Parser☆19Updated 3 months ago
- Jupyter Notebooks for Cyber Threat Intelligence☆35Updated last year
- ☆33Updated 2 weeks ago
- ShellSweeping the evil.☆52Updated 10 months ago
- A collection of my public YARA signatures for various malware families☆29Updated 7 months ago
- ☆19Updated 3 months ago
- Indicators of Compromise (IOCs) accompanying HP Threat Research blog posts and reports.☆29Updated last year
- Malformed Access Log to CSV - Convert Web Server Access Logs to CSV☆17Updated 7 months ago