fr0gger / IATelligenceLinks
IATelligence is a Python script that will extract the IAT of a PE file and request GPT to get more information about the API and the ATT&CK matrix related
☆368Updated 2 years ago
Alternatives and similar repositories for IATelligence
Users that are interested in IATelligence are comparing it to the libraries listed below
Sorting:
- Jupyter Notebooks for the Blue Team☆144Updated 4 months ago
- ☆226Updated 2 years ago
- ☆197Updated last year
- Signatures and IoCs from public Volexity blog posts.☆355Updated 2 months ago
- MAL-CL (Malicious Command-Line)☆315Updated 2 years ago
- ☆513Updated 10 months ago
- ☆141Updated 2 weeks ago
- A ProcessMonitor visualization application written in rust.☆182Updated 2 years ago
- ☆161Updated last year
- Different learning materials☆227Updated 4 months ago
- A python script developed to process Windows memory images based on triage type.☆263Updated last year
- Awesome list of keywords and artifacts for Threat Hunting sessions☆593Updated last week
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆327Updated 3 months ago
- Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.☆190Updated this week
- This repository contains indicators of compromise (IOCs) of our various investigations.☆283Updated this week
- Automated YARA Rule Standardization and Quality Assurance Tool☆232Updated last week
- CLI tools for forensic investigation of Windows artifacts☆344Updated 3 weeks ago
- ☆204Updated 9 months ago
- A PoC ransomware sample to test out your ransomware response strategy.☆210Updated 3 months ago
- Some Threat Hunting queries useful for blue teamers☆127Updated 3 years ago
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆164Updated last year
- A repository of DFIR-related Mind Maps geared towards the visual learners!☆527Updated 2 years ago
- The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifa…☆600Updated 5 months ago
- Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR☆245Updated 4 months ago
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆96Updated 2 years ago
- A centralized and enhanced memory analysis platform☆481Updated 3 weeks ago
- Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.☆253Updated 2 years ago
- ☆207Updated 2 months ago
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆187Updated 7 months ago
- MAD ATT&CK Defender: ATT&CK Adversary Emulation Repository☆118Updated 2 years ago