fr0gger / IATelligenceLinks
IATelligence is a Python script that will extract the IAT of a PE file and request GPT to get more information about the API and the ATT&CK matrix related
☆362Updated 2 years ago
Alternatives and similar repositories for IATelligence
Users that are interested in IATelligence are comparing it to the libraries listed below
Sorting:
- ☆516Updated 7 months ago
- Collection of Event ID ressources useful for Digital Forensics and Incident Response☆615Updated 11 months ago
- A python script developed to process Windows memory images based on triage type.☆262Updated last year
- ☆195Updated last year
- MAL-CL (Malicious Command-Line)☆312Updated 2 years ago
- The goal of this repo is to archive artifacts from all versions of various OS's and categorizing them by type. This will help with artifa…☆597Updated 2 months ago
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆313Updated 3 weeks ago
- Jupyter Notebooks for the Blue Team☆144Updated 2 months ago
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆165Updated last year
- Resources To Learn And Understand SIGMA Rules☆175Updated 2 years ago
- A repository of DFIR-related Mind Maps geared towards the visual learners!☆525Updated 2 years ago
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆202Updated 2 years ago
- Automated YARA Rule Standardization and Quality Assurance Tool☆221Updated last week
- Awesome list of keywords and artifacts for Threat Hunting sessions☆575Updated last month
- Signatures and IoCs from public Volexity blog posts.☆354Updated last week
- Set of EVTX samples (>270) mapped to MITRE ATT&CK tactic and techniques to measure your SIEM coverage or developed new use cases.☆576Updated 4 months ago
- ☆226Updated 2 years ago
- MISP Playbooks☆201Updated 3 months ago
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆155Updated 3 years ago
- Threat Hunting tool about Sysmon and graphs☆333Updated 2 years ago
- Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.☆248Updated 2 years ago
- CLI tools for forensic investigation of Windows artifacts☆339Updated 7 months ago
- ☆201Updated 7 months ago
- Rules generated from our investigations.☆195Updated this week
- Blue Team detection lab created with Terraform and Ansible in Azure.☆158Updated 6 months ago
- An analytical challenge created to test junior analysts looking to try performing proactive and reactive cyber threat intelligence.☆196Updated 11 months ago
- ☆201Updated last year
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆95Updated 2 years ago
- Set of SIGMA rules (>350) mapped to MITRE ATT&CK tactic and techniques☆364Updated 4 months ago
- A repository of my own Sigma detection rules.☆160Updated 8 months ago