f0wl / MalwareLab_VM-SetupLinks
Setup scripts for my Malware Analysis VMs
☆254Updated 3 years ago
Alternatives and similar repositories for MalwareLab_VM-Setup
Users that are interested in MalwareLab_VM-Setup are comparing it to the libraries listed below
Sorting:
- Code and yara rules to detect and analyze Cobalt Strike☆269Updated 4 years ago
- Exercise writeups from the book Practical Malware Analysis.☆226Updated last year
- Beta versions of my software☆260Updated last month
- Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.☆744Updated 3 years ago
- Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into ca…☆425Updated last year
- ☆300Updated 4 years ago
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆583Updated last year
- Quickly debug shellcode extracted during malware analysis☆606Updated 2 years ago
- ☆1,084Updated last year
- Scan files or process memory for CobaltStrike beacons and parse their configuration☆913Updated 3 years ago
- ☆208Updated last month
- This repo is a collection of Ransomware reports from vendors, researchers, etc.☆119Updated 2 years ago
- Detect and respond to Cobalt Strike beacons using ETW.☆505Updated 3 years ago
- Community modules for CAPE Sandbox☆101Updated this week
- Tool based on CobaltStrikeParser from SentinelOne which can be used to spam a CobaltStrike server with fake beacons☆371Updated 3 years ago
- Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.☆253Updated 2 years ago
- ☆452Updated 4 years ago
- A repository that maps commonly used attacks using MSRPC protocols to ATT&CK☆333Updated 2 years ago
- Emulate and Dissect MSF and *other* attacks☆143Updated last year
- Threat Intel IoCs + bits and pieces of dark matter☆414Updated 2 months ago
- Collection of malware persistence and hunting information. Be a persistent persistence hunter!☆181Updated 3 weeks ago
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆710Updated 2 years ago
- ☆33Updated 6 years ago
- Python library for dissecting and parsing Cobalt Strike related data such as Beacon payloads and Malleable C2 Profiles☆173Updated last month
- Scan installed EDRs and AVs on Windows☆590Updated last month
- We developed GRAT2 Command & Control (C2) project for learning purpose.☆413Updated 4 years ago
- c2 traffic☆189Updated 2 years ago
- PCAP Samples for Different Post Exploitation Techniques☆363Updated 4 years ago
- A collection of scripts for dealing with Cobalt Strike beacons in Python☆168Updated 4 years ago
- IOC from articles, tweets for archives☆315Updated last year