dwmetz / MalChelaLinks
A YARA & Malware Analysis Toolkit written in Rust.
☆89Updated 3 months ago
Alternatives and similar repositories for MalChela
Users that are interested in MalChela are comparing it to the libraries listed below
Sorting:
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆150Updated last year
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆125Updated last year
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆54Updated last year
- Contains compiled binaries of Volatility☆36Updated 7 months ago
- Detection Engineering with YARA☆86Updated 2 years ago
- FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (ext4, XFS) journals (not systemd-journald logs), gene…☆99Updated 2 weeks ago
- A C# based tool for analysing malicious OneNote documents☆118Updated 2 years ago
- IOCs and notes related to malware☆26Updated 6 months ago
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆34Updated 6 months ago
- Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)☆66Updated 2 years ago
- These FLARE-VM configuration files are designed to be help setup a purpose-built installation, remove unnecessary packages to help stream…☆15Updated last year
- A specification and style guide for YARA rules☆64Updated last year
- A simple tool designed to create Atomic Red Team tests with ease.☆49Updated 10 months ago
- Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports☆145Updated this week
- A Windows Event Log MCP☆37Updated 4 months ago
- Rules shared by the community from 100 Days of YARA 2025☆39Updated last week
- yara detection rules for hunting with the threathunting-keywords project☆157Updated 7 months ago
- The backend server handling API requests and task management☆55Updated this week
- Detection rule validation☆40Updated 2 years ago
- C2 Active Scanner☆59Updated last year
- A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners☆116Updated last year
- Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…☆75Updated 3 weeks ago
- A zero dependency and customizable Python library for scanning Windows and Linux process memory.☆66Updated last year
- Quick ESXi Log Parser☆28Updated 2 months ago
- This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…☆31Updated 10 months ago
- FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.☆69Updated this week
- macOS Artifacts☆33Updated 10 months ago
- A collection of CVEs weaponized by ransomware operators☆128Updated 2 months ago
- IOCs collected during day-to-day activities☆99Updated this week
- This is the repository for indicators of compromise (IOCs) and other data for threat intelligence articles posted on the Palo Alto Networ…☆108Updated last month