fr0gger / IATelligenceLinks
IATelligence is a Python script that will extract the IAT of a PE file and request GPT to get more information about the API and the ATT&CK matrix related
☆367Updated 2 years ago
Alternatives and similar repositories for IATelligence
Users that are interested in IATelligence are comparing it to the libraries listed below
Sorting:
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆203Updated 2 years ago
- A python script developed to process Windows memory images based on triage type.☆262Updated last year
- ☆516Updated 8 months ago
- Signatures and IoCs from public Volexity blog posts.☆355Updated last month
- ☆204Updated 2 weeks ago
- Jupyter Notebooks for the Blue Team☆144Updated 3 months ago
- Ransomware simulator written in Golang☆439Updated 2 years ago
- ☆131Updated 3 weeks ago
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆165Updated last year
- A ProcessMonitor visualization application written in rust.☆181Updated last year
- This repository contains indicators of compromise (IOCs) of our various investigations.☆264Updated this week
- Rules generated from our investigations.☆195Updated last week
- Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.☆249Updated 2 years ago
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆318Updated last month
- Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.☆577Updated 5 months ago
- ☆201Updated 7 months ago
- A repository of DFIR-related Mind Maps geared towards the visual learners!☆526Updated 2 years ago
- ☆196Updated last year
- A repository of my own Sigma detection rules.☆160Updated 9 months ago
- MISP Playbooks☆203Updated last week
- Living Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various built-in "living off the land" ma…☆471Updated last week
- ☆226Updated 2 years ago
- Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR☆240Updated 2 months ago
- MAL-CL (Malicious Command-Line)☆313Updated 2 years ago
- Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.☆184Updated this week
- Resources To Learn And Understand SIGMA Rules☆177Updated 2 years ago
- Some Threat Hunting queries useful for blue teamers☆127Updated 3 years ago
- An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.☆196Updated 11 months ago
- Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniques☆369Updated 5 months ago
- A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs☆720Updated 2 months ago