embee-research / CyberChef
☆14Updated last year
Related projects ⓘ
Alternatives and complementary repositories for CyberChef
- ☆31Updated 2 years ago
- Collection of my own detection rules☆14Updated 9 months ago
- A proof-of-concept re-assembler for reverse VNC traffic.☆25Updated last year
- Detection rule validation☆41Updated last year
- Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser☆30Updated 8 months ago
- Baseline a Windows System against LOLBAS☆25Updated 6 months ago
- A project that aims to automate Volatility3 at scale with the use of cloud strength and the power of KQL inside ADX.☆15Updated 3 weeks ago
- Browse Windows Prefetch versions: 17,23,26,30v1/2 & some of SuperFetch .7db/.db's☆40Updated 9 months ago
- These FLARE-VM configuration files are designed to be help setup a purpose-built installation, remove unnecessary packages to help stream…☆13Updated 7 months ago
- A collection of my yara rules☆33Updated last year
- ☆13Updated 6 months ago
- Simple PowerShell script to enable process scanning with Yara.☆90Updated 2 years ago
- PS-TrustedDocuments: PowerShell script to handle information on trusted documents for Microsoft Office☆34Updated last year
- General Content☆20Updated 4 months ago
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆18Updated last year
- Evtx Log (xml) Browser☆55Updated last year
- Repository of open source malware here on Github!☆38Updated 2 years ago
- A powershell parser for https://github.com/ufrisk/MemProcFS☆43Updated 3 years ago
- Just Another broken Registry Parser (JARP)☆16Updated 5 months ago
- A collection of small scripts and tools for deobfuscation and malware analysis.☆65Updated last year
- Repository of Volatility3 plugins☆21Updated last year
- ESXi Cyber Security Incident Response Script☆20Updated 2 months ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆30Updated 2 years ago
- A pure PowerShell/ .NET DFIR capability that dumps the Windows SRUM (System Resource Usage Monitor) database to CSVs for analysis.☆13Updated 3 years ago
- ☆19Updated 2 months ago
- A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.☆25Updated 2 years ago
- This script will generate hashes (MD5, SHA1, SHA256), submit the MD5 to Virus Total, and produce a text file with the results.☆15Updated last year
- A repo that contains a recursive dump from the ROOT key of every Windows Registry hive (using KAPE) from a vanilla (clean) install of eve…☆43Updated last year
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆50Updated last year
- Converts Sigma detection rules to a Splunk alert configuration.☆13Updated 3 years ago