f0wl / MalwareLab_VM-SetupLinks
Setup scripts for my Malware Analysis VMs
☆256Updated 3 years ago
Alternatives and similar repositories for MalwareLab_VM-Setup
Users that are interested in MalwareLab_VM-Setup are comparing it to the libraries listed below
Sorting:
- Code and yara rules to detect and analyze Cobalt Strike☆270Updated 4 years ago
- Exercise writeups from the book Practical Malware Analysis.☆226Updated 2 years ago
- Beta versions of my software☆260Updated 2 months ago
- ☆300Updated 4 years ago
- Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.☆745Updated 3 years ago
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆583Updated last year
- ☆208Updated 2 months ago
- ☆1,096Updated last year
- This repo is a collection of Ransomware reports from vendors, researchers, etc.☆119Updated 2 years ago
- Quickly debug shellcode extracted during malware analysis☆610Updated 2 years ago
- APT Malware Dataset Containing over 3,500 State-Sponsored Malware Samples☆336Updated 2 years ago
- Scan files or process memory for CobaltStrike beacons and parse their configuration☆914Updated 4 years ago
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆713Updated 2 years ago
- Evasions encyclopedia gathers methods used by malware to evade detection when run in virtualized environment. Methods are grouped into ca…☆430Updated last year
- Detect and respond to Cobalt Strike beacons using ETW.☆508Updated 3 years ago
- Tool based on CobaltStrikeParser from SentinelOne which can be used to spam a CobaltStrike server with fake beacons☆371Updated 3 years ago
- Community modules for CAPE Sandbox☆101Updated last week
- Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.☆255Updated 2 years ago
- A repository that maps commonly used attacks using MSRPC protocols to ATT&CK☆335Updated 2 years ago
- Threat Intel IoCs + bits and pieces of dark matter☆412Updated 2 months ago
- Hunts out CobaltStrike beacons and logs operator command output☆939Updated 11 months ago
- Collection of malware persistence and hunting information. Be a persistent persistence hunter!☆181Updated last month
- Scan installed EDRs and AVs on Windows☆592Updated last month
- We developed GRAT2 Command & Control (C2) project for learning purpose.☆413Updated 4 years ago
- Resources About Windows Security. 1100+ Open Source Tools. 3300+ Blog Post and Videos.☆495Updated 5 years ago
- ☆452Updated 4 years ago
- Python library for dissecting and parsing Cobalt Strike related data such as Beacon payloads and Malleable C2 Profiles☆175Updated 2 months ago
- Standard collection of rules for capa: the tool for enumerating the capabilities of programs☆620Updated this week
- c2 traffic☆189Updated 2 years ago
- Select proof-of-concept exploits for software vulnerabilities to aid in identifying and testing vulnerable systems.☆189Updated last year