fortinet / ips-bph-frameworkLinks
BLACKPHENIX is an open source malware analysis automation framework composed of services, scripts, plug-ins, and tools and is based on a Command-and-Control (C&C) architecture
☆31Updated 2 years ago
Alternatives and similar repositories for ips-bph-framework
Users that are interested in ips-bph-framework are comparing it to the libraries listed below
Sorting:
- ☆20Updated 5 years ago
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆53Updated 7 years ago
- Volatility memory forensics plugin for extracting Windows DNS Cache☆29Updated 8 years ago
- Community-based integrated malware identification system☆81Updated 3 years ago
- Script to parse Process Monitor XML log file, and give you a summary report.☆24Updated 9 years ago
- IoC's, PCRE's, YARA's etc☆24Updated 9 months ago
- Win32 utility for auditing TCP connections☆56Updated 5 years ago
- The mission of Black Lotus Labs is to leverage our network visibility to both help protect customers and keep the internet clean.☆12Updated 4 years ago
- Parses Java Cache IDX files☆40Updated 7 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 5 years ago
- Sysmon config for both Windows and Linux Devices. Windows one is a bit dated☆55Updated last year
- Presentation materials for talks I've given.☆20Updated 6 years ago
- Public rules and samples for various automations through LimaCharlie.io☆14Updated 4 years ago
- This is a python version of samesame repo to generate homograph strings☆24Updated 7 years ago
- A Heroku-based web honeypot that can be used to create and monitor fake HTTP endpoints (i.e. honeytokens).☆65Updated 6 years ago
- windows-operating-system-archaeology @Enigma0x3 @subTee☆47Updated 8 years ago
- Notebooks created to attack and secure Active Directory environments☆27Updated 6 years ago
- Capture, upload and analyze network traffic; powered by PacketTotal.com.☆97Updated 5 years ago
- A Maltego transform for VirusTotal Submitter Information☆35Updated 6 years ago
- This repository contains various files linked to Operation Shadowhammer as it was originally discovered by Kaspersky Team.☆12Updated 6 years ago
- No-Script Automation Tool☆56Updated 7 years ago
- A Python malware analysis library.☆50Updated 2 years ago
- A Simple PE File Heuristics Scanners☆52Updated 6 years ago
- The Shodan monitoring tools allows you to monitor shodan listed servers basis on the filter you provided☆33Updated 4 years ago
- Sniffles: Packet Capture Generator for IDS and Regular Expression Evaluation☆63Updated 4 years ago
- SilkETW & SilkService☆40Updated 6 years ago
- Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…☆64Updated 2 years ago
- Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…☆32Updated 9 years ago
- Placeholder for IRIS-H Digital Forensics Tool☆15Updated 7 years ago
- Endpoint monitoring stack.☆19Updated 10 years ago