fortinet / ips-bph-frameworkLinks
BLACKPHENIX is an open source malware analysis automation framework composed of services, scripts, plug-ins, and tools and is based on a Command-and-Control (C&C) architecture
☆31Updated 2 years ago
Alternatives and similar repositories for ips-bph-framework
Users that are interested in ips-bph-framework are comparing it to the libraries listed below
Sorting:
- ☆19Updated 5 years ago
- Community-based integrated malware identification system☆81Updated 3 years ago
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆53Updated 7 years ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Updated 6 years ago
- Sniffles: Packet Capture Generator for IDS and Regular Expression Evaluation☆63Updated 4 years ago
- hassh-utils: Nmap NSE Script and Docker image for HASSH - the SSH client/server fingerprinting method (https://github.com/salesforce/hass…☆58Updated last year
- Python3 Metasploit automation library☆22Updated 3 years ago
- IoC's, PCRE's, YARA's etc☆24Updated 8 months ago
- This repository contains various files linked to Operation Shadowhammer as it was originally discovered by Kaspersky Team.☆12Updated 6 years ago
- Passive Network Audit Framework☆32Updated 7 years ago
- Endpoint monitoring stack.☆19Updated 10 years ago
- ☆26Updated 5 years ago
- Notebooks created to attack and secure Active Directory environments☆28Updated 6 years ago
- A Python malware analysis library.☆50Updated 2 years ago
- The mission of Black Lotus Labs is to leverage our network visibility to both help protect customers and keep the internet clean.☆12Updated 4 years ago
- Presentation materials for talks I've given.☆20Updated 6 years ago
- This is a Ansible script for building a ready to go Cuckoo Sandbox server.☆26Updated 7 years ago
- ☆12Updated 7 years ago
- Sysmon config for both Windows and Linux Devices. Windows one is a bit dated☆56Updated last year
- Scripts to detect Fast-Flux and DGA using DNS query responses☆44Updated 8 years ago
- Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…☆64Updated 2 years ago
- SilkETW & SilkService☆40Updated 6 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 5 years ago
- Public rules and samples for various automations through LimaCharlie.io☆14Updated 4 years ago
- hopefully a source-to-source deobfuscator, aiming at deobfuscating common scripts languages such as Powershell, VBA and Javascript. Curre…☆40Updated 6 years ago
- A defense tool - detect web shells in local directories via md5sum☆32Updated 6 years ago
- Capture, upload and analyze network traffic; powered by PacketTotal.com.☆97Updated 5 years ago
- Win32 utility for auditing TCP connections☆56Updated 5 years ago
- Botnet Simulation Framework☆77Updated 5 years ago
- Gophish Python cli to perform huge phishing campaigns☆39Updated 7 years ago