hejelylab / easeYARA
C# Desktop GUI application that either performs YARA scan locally or prepares the scan in Active Directory domain environment with a few clicks.
☆30Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for easeYARA
- Simple PowerShell script to enable process scanning with Yara.☆90Updated 2 years ago
- Create a cool process tree like https://twitter.com/ACEResponder.☆34Updated last year
- ☆37Updated 2 years ago
- My Malware Analysis Reports☆17Updated 2 years ago
- Triaging Windows event logs based on SANS Poster☆37Updated last year
- Placeholder for my detection repo and misc detection engineering content☆43Updated last year
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 2 years ago
- ☆34Updated last year
- Get intelligence info (tags, mitre techniques, yara and more) and find similar malware in a fast and easy way☆18Updated 2 years ago
- Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).☆53Updated 2 years ago
- ☆47Updated 4 years ago
- A proof-of-concept re-assembler for reverse VNC traffic.☆25Updated last year
- Yara Rules for Modern Malware☆67Updated 8 months ago
- aggregated repo for all conferences and talks I am giving☆17Updated 3 years ago
- MITRE TTPs derived from Conti's leaked playbooks from XSS.IS☆35Updated 3 years ago
- Evtx Log (xml) Browser☆55Updated last year
- ☆31Updated 2 years ago
- Community Detection Signature Build and Distribution Pipeline for YARA, Suricata, Snort and Sigma☆27Updated last year
- Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…☆26Updated last month
- Info related to the Outflank training: Microsoft Office Offensive Tradecraft☆51Updated 5 months ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆30Updated 2 years ago
- AdHoc solutions☆48Updated last year
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆62Updated 2 years ago
- This repo hosts a poc of how to execute F# code within an unmanaged process☆65Updated 4 months ago
- A set of tools for collecting forensic information☆26Updated 4 years ago
- Repository for LNK stuff☆27Updated 2 years ago
- Quick analysis focusing on most important of a Malware or a Threat☆39Updated last year
- Extract payload URLs from Follina (CVE-2022-30190) docx and rtf files☆31Updated 2 years ago