fortinet / ips-bph-frameworkLinks
BLACKPHENIX is an open source malware analysis automation framework composed of services, scripts, plug-ins, and tools and is based on a Command-and-Control (C&C) architecture
☆31Updated 2 years ago
Alternatives and similar repositories for ips-bph-framework
Users that are interested in ips-bph-framework are comparing it to the libraries listed below
Sorting:
- IoC's, PCRE's, YARA's etc☆24Updated 10 months ago
- Community-based integrated malware identification system☆81Updated 3 years ago
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆53Updated 7 years ago
- ☆21Updated 5 years ago
- Presentation materials for talks I've given.☆20Updated 6 years ago
- Endpoint monitoring stack.☆19Updated 10 years ago
- Script to parse Process Monitor XML log file, and give you a summary report.☆24Updated 9 years ago
- Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…☆64Updated 2 years ago
- Sysmon config for both Windows and Linux Devices. Windows one is a bit dated☆55Updated last year
- hassh-utils: Nmap NSE Script and Docker image for HASSH - the SSH client/server fingerprinting method (https://github.com/salesforce/hass…☆58Updated last year
- Public rules and samples for various automations through LimaCharlie.io☆14Updated 4 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆29Updated 5 years ago
- This is a Ansible script for building a ready to go Cuckoo Sandbox server.☆26Updated 7 years ago
- A Heroku-based web honeypot that can be used to create and monitor fake HTTP endpoints (i.e. honeytokens).☆65Updated 6 years ago
- Cybersecurity Incidents Mind Maps☆34Updated 4 years ago
- Win32 utility for auditing TCP connections☆56Updated 5 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 5 years ago
- Capture, upload and analyze network traffic; powered by PacketTotal.com.☆97Updated 5 years ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Updated 6 years ago
- Placeholder for IRIS-H Digital Forensics Tool☆15Updated 7 years ago
- Validates yara rules and tries to repair the broken ones.☆41Updated 5 years ago
- No-Script Automation Tool☆56Updated 7 years ago
- This repository contains various files linked to Operation Shadowhammer as it was originally discovered by Kaspersky Team.☆12Updated 6 years ago
- ☆26Updated 5 years ago
- Accompanying PowerShell Modules for DevSec Defense Presentation☆30Updated 7 years ago
- Sniffles: Packet Capture Generator for IDS and Regular Expression Evaluation☆63Updated 4 years ago
- python wrapper to use tshark for file extraction from the command line.☆26Updated 7 years ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 7 years ago
- A Maltego transform for VirusTotal Submitter Information☆35Updated 6 years ago
- windows-operating-system-archaeology @Enigma0x3 @subTee☆47Updated 8 years ago