embee-research / Icedid-file-decryptorLinks
Static Decryptor for IcedID Malware
☆18Updated 2 years ago
Alternatives and similar repositories for Icedid-file-decryptor
Users that are interested in Icedid-file-decryptor are comparing it to the libraries listed below
Sorting:
- The repository accompanying the Buer Emulation workshop☆24Updated 3 years ago
- Scans a list of raccoon servers from Tria.ge and extracts the config☆15Updated 2 years ago
- MITRE TTPs derived from Conti's leaked playbooks from XSS.IS☆38Updated 3 years ago
- ☆23Updated last year
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated 2 years ago
- aggregated repo for all conferences and talks I am giving☆17Updated 3 years ago
- A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.☆21Updated 10 months ago
- ☆12Updated 4 years ago
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- ☆33Updated 3 years ago
- Identifies metadata of .NET binary files.☆21Updated last year
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 2 years ago
- Mythic Developer Series: Workshop Golang Agent☆24Updated last year
- Collection of generic YARA rules☆16Updated 11 months ago
- Slides from my talk at the Adversary Village, Defcon 30☆29Updated 2 years ago
- Get intelligence info (tags, mitre techniques, yara and more) and find similar malware in a fast and easy way☆18Updated 2 years ago
- USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is exec…☆20Updated 2 years ago
- Repository for LNK stuff☆30Updated 2 years ago
- Extension functionality for the NightHawk operator client☆27Updated last year
- ☆27Updated 6 months ago
- Dumping credentials through windbg and pykd☆40Updated last year
- Extract payload URLs from Follina (CVE-2022-30190) docx and rtf files☆31Updated 2 years ago
- Triaging Windows event logs based on SANS Poster☆39Updated 2 years ago
- EventLogSilencer is a PowerShell script designed for disable Windows Event Logging☆17Updated last year
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆44Updated 2 years ago
- WMI SA stuffs☆30Updated 3 years ago
- A collection of my presentation materials.☆17Updated last year
- ☆15Updated 3 years ago
- Yara Rules for Modern Malware☆77Updated last year
- A set of tools for collecting forensic information☆26Updated 5 years ago