Capture-Py is a malware analysis tool that makes a copy of any files deleted or modified in a given directory and sub-directories. It was intended to be a subsitute for Capture-Bat on 64bit systems.
☆27Jun 28, 2017Updated 8 years ago
Alternatives and similar repositories for Capture-Py
Users that are interested in Capture-Py are comparing it to the libraries listed below
Sorting:
- Detect and trap IP scanners☆11Mar 26, 2019Updated 6 years ago
- Wrapper for TSK (Sleuth Kit) Bindings☆12Jan 10, 2023Updated 3 years ago
- Capture BAT is a behavioral analysis tool of applications for the Win32 operating system family.☆32Jun 28, 2013Updated 12 years ago
- Port of Mandiant ShellcodeHashes plugin from IDA to BinaryNinja☆11Jul 24, 2024Updated last year
- MAEC Schemas and Schema Development☆89Jan 29, 2020Updated 6 years ago
- A python script that can detect and parse loki-bot (malware) related network traffic. This script can be helpful to DFIR analysts and sec…☆13Dec 31, 2021Updated 4 years ago
- Server for receiving autorun data from the clients☆13Sep 26, 2017Updated 8 years ago
- Steal users password with a fake sudo function.☆43Feb 29, 2024Updated 2 years ago
- A GC link parser for both linkfiles and jumplists.☆18Oct 28, 2016Updated 9 years ago
- Forked and updated with some additional features over the original☆17Mar 30, 2021Updated 4 years ago
- Browser extension for launching multi-platform OSINT queries from grouped YAML profiles.☆10Apr 25, 2025Updated 10 months ago
- Using MCP is fun with Cyberbro!☆19Jan 27, 2026Updated last month
- IOCs for various malware families☆11Jul 18, 2024Updated last year
- A modern Python-3-based alternative to RegRipper☆208Mar 31, 2025Updated 11 months ago
- ☆16Apr 21, 2023Updated 2 years ago
- Detection rules and threat hunting queries in Defender XDR and Azure Sentinel☆16Mar 13, 2026Updated last week
- Full Antivirus Evasion for Mimikatz☆14Mar 10, 2017Updated 9 years ago
- Automatically updated lists of Tor Relays.☆19Updated this week
- transparent TCP-to-proxy redirector☆16Dec 8, 2019Updated 6 years ago
- Use this library to automatically extract PE files compressed with aplib from a binary blob.☆34May 21, 2019Updated 6 years ago
- This script is used for extracting DDE in docx and xlsx☆12Dec 8, 2017Updated 8 years ago
- CANBus protection used to isolate third party systems requiring OBDII access.☆19Mar 18, 2015Updated 11 years ago
- ☆13Jul 23, 2016Updated 9 years ago
- Writeups of CTF challenges I do☆13Sep 29, 2019Updated 6 years ago
- Tool for Active Directory Certificate Services enumeration and abuse☆16Mar 20, 2025Updated last year
- Cronjob shell scripts to update IPv4 & IPv6 adresses seperately on Dynv6.com☆11May 9, 2018Updated 7 years ago
- Various Python scripts that have come in handy but aren't important enough to get their own repository☆22Feb 18, 2021Updated 5 years ago
- C Bindings to BAP☆16Jul 13, 2022Updated 3 years ago
- DFF (Digital Forensics Framework)☆11Jan 6, 2021Updated 5 years ago
- Dark Reader Chrome and Firefox extension☆12Jul 7, 2019Updated 6 years ago
- Indicators of compromise☆17Jan 29, 2026Updated last month
- TeamViewer QuickSupport Integration for .net applications☆11Jan 20, 2022Updated 4 years ago
- A BACnet layer for Scapy☆13Nov 25, 2015Updated 10 years ago
- Triage automation for suspect URLs☆13Jul 23, 2019Updated 6 years ago
- Packet Knock-Out is an exploration in a method of data exfiltration via packet port numbers.☆14Sep 18, 2016Updated 9 years ago
- OSINT Graph Investigation Application☆32Dec 11, 2025Updated 3 months ago
- Plugins to add funtionality to ProcDOT. http://www.procdot.com☆25Sep 26, 2023Updated 2 years ago
- USN Journal full path builder☆67Sep 16, 2024Updated last year
- Splunk integration with MISP☆12Apr 14, 2018Updated 7 years ago