hashlookup / hashlookup-guiLinks
Provides a multi-platform Graphical User Interface for hashlookup
☆12Updated last year
Alternatives and similar repositories for hashlookup-gui
Users that are interested in hashlookup-gui are comparing it to the libraries listed below
Sorting:
- ☆22Updated 2 years ago
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- Collection of generic YARA rules☆16Updated 2 weeks ago
- Defeating Anti-Debugging Techniques for Malware Analysis☆13Updated 2 years ago
- Links to malware-related YARA rules☆15Updated 2 years ago
- Tool to decrypt the configuration of NanoCore and dump all used plugins☆11Updated 4 years ago
- ☆35Updated 2 years ago
- Alternative YARA scanning engine☆72Updated 3 years ago
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆64Updated 3 years ago
- Imphash-like calculation on Golang binaries☆49Updated 3 years ago
- QuasarRAT analysis tools and research report☆27Updated last year
- Scripts, Yara rules and other files developed during malware investigations☆25Updated 3 years ago
- ☆18Updated last year
- Utility to inject honey tokens into lsass.☆28Updated 8 years ago
- Unpacking and decryption tools for the Emotet malware☆45Updated 3 years ago
- ☆33Updated 3 years ago
- Symantec EDR Internals☆28Updated 3 years ago
- Generates YARA rules to detect malware using API hashing☆17Updated 4 years ago
- Tracking APT IOCs☆25Updated 4 years ago
- YaraScanner is a file pattern-matching tool based on YARA rules.☆58Updated 2 years ago
- Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.☆68Updated 3 years ago
- Help deobfuscate VBScript☆16Updated 3 years ago
- Yara rules for malicious javascript files from public repositories or written by me.☆13Updated 3 years ago
- ☆19Updated last year
- Python wrappers for mal_unpack☆36Updated last year
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- Specialized tool to dump Position Independent Code.☆22Updated 5 years ago
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆70Updated 3 years ago
- ☆24Updated last year
- This is a repository that is meant to hold detections for various process injection techniques.☆34Updated 5 years ago