dwmetz / MalChelaLinks
A YARA & Malware Analysis Toolkit written in Rust.
☆57Updated last month
Alternatives and similar repositories for MalChela
Users that are interested in MalChela are comparing it to the libraries listed below
Sorting:
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆67Updated 2 years ago
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆150Updated last year
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆54Updated 11 months ago
- Detection Engineering with YARA☆87Updated last year
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆125Updated last year
- Contains compiled binaries of Volatility☆37Updated 6 months ago
- Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports☆140Updated this week
- A specification and style guide for YARA rules☆61Updated last year
- IOCs and notes related to malware☆25Updated 4 months ago
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆34Updated 5 months ago
- Quick ESXi Log Parser☆28Updated last month
- These FLARE-VM configuration files are designed to be help setup a purpose-built installation, remove unnecessary packages to help stream…☆15Updated last year
- A C# based tool for analysing malicious OneNote documents☆118Updated 2 years ago
- A Windows Event Log MCP☆37Updated 3 months ago
- A simple tool designed to create Atomic Red Team tests with ease.☆48Updated 8 months ago
- The core backend server handling API requests and task management☆49Updated last month
- Tools and scripts to deploy and manage OpenRelik instances☆14Updated 5 months ago
- FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (ext4, XFS) journals (not systemd-journald logs), gene…☆94Updated last month
- This is the repository for indicators of compromise (IOCs) and other data for threat intelligence articles posted on the Palo Alto Networ…☆107Updated last week
- C2 Active Scanner☆60Updated last year
- Linux Baseline and Forensic Triage Tool - BETA☆57Updated 3 years ago
- Detection rule validation☆40Updated 2 years ago
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners☆114Updated last year
- macOS Artifacts☆33Updated 8 months ago
- CarbonBlack EDR detection rules and response actions☆73Updated last year
- Rules Shared by the Community from 100 Days of YARA 2023☆78Updated 2 years ago
- Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…☆73Updated 5 months ago
- This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…☆32Updated 9 months ago
- Parses USB connection artifacts from offline Registry hives☆105Updated 5 months ago
- A forensic open-source parser module for Autopsy that allows extracting the messages, comments, posts, contacts, calendar entries and rea…☆111Updated last week