fox-it / skrapa

Related projects ⓘ

Alternatives and complementary repositories for skrapa

• g-les / 100DaysofYARA
  100 Days of YARA to be updated with rules & ideas as the year progresses
  ☆56Updated last year
• 100DaysofYARA / 2023
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆77Updated last year
• hpthreatresearch / tools
  Scripts and tools accompanying HP Threat Research blog posts and reports.
  ☆48Updated 6 months ago
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆25Updated 3 weeks ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆67Updated 8 months ago
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆47Updated 4 months ago
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆93Updated 11 months ago
• openrelik / openrelik-server
  The core backend server handling API requests and task management
  ☆31Updated this week
• invoke-eric / jupyter
  Jupyter Notebooks for Cyber Threat Intelligence
  ☆35Updated last year
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 2 years ago
• bartblaze / FARA
  Repository that contains a set of purposefully erroneous Yara rules.
  ☆48Updated 9 months ago
• MattETurner / DFIRlogbook
  Logbook for Digital Forensics and Incident Response
  ☆49Updated 3 months ago
• AttackIQ / SigmAIQ
  A pySigma wrapper and langchain toolkit for automatic rule creation/translation
  ☆66Updated this week
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆49Updated 5 months ago
• stuxnet999 / volatility-binaries
  Contains compiled binaries of Volatility
  ☆29Updated 3 weeks ago
• csababarta / memory-baseliner
  Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…
  ☆49Updated last year
• JPCERTCC / jpcert-yara
  JPCERT/CC public YARA rules repository
  ☆101Updated 4 months ago
• fboldewin / YARA_Detection_Engineering
  Detection Engineering with YARA
  ☆85Updated 10 months ago
• CyberCX-DFIR / usnjrnl_rewind
  USN Journal full path builder
  ☆36Updated last month
• delivr-to / detections
  A home for detection content developed by the delivr.to team
  ☆59Updated 2 months ago
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆72Updated 2 years ago
• threatcat-ch / malware-analysis-pipeline
  Lightweight Python-Based Malware Analysis Pipeline
  ☆29Updated 3 weeks ago
• malpedia / malpedia-flossed
  FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.
  ☆48Updated 8 months ago
• blackberry / threat-research-and-intelligence
  BlackBerry Threat Research & Intelligence
  ☆93Updated last year
• ps-interactive / labs_modern_malware_c2
  labs_modern_malware_c2 Originally supporting Defcon workshop, will morph into Attack Defend for C2.
  ☆18Updated 2 years ago
• stvemillertime / Cerebro
  Scripts and lists to help generate YARA friendly string mutations
  ☆19Updated last year
• moullos / Mitigate
  Machine Interrogation To Identify Gaps & Techniques for Execution
  ☆32Updated 2 years ago
• NextronSystems / CyberChef
  CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition
  ☆62Updated 2 years ago
• blueteam0ps / memOptix
  A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.
  ☆94Updated last year
• curated-intel / The-CTI-Research-Guide
  A repository to help CTI teams tackle the challenges around collection and research by providing guidance from experienced practitioners
  ☆44Updated last week