hjunker / ProcessBouncer
ProcessBouncer is a simple but effective tool for blocking malware with a process-based approach. With a little fine-tuning this allows to effectively block most of current ransomware that is out there.
☆24Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for ProcessBouncer
- Pure Honeypots with an automated bash script☆19Updated 3 years ago
- A Passive DNS backend and collector☆31Updated 2 years ago
- ☆12Updated 3 years ago
- Windows application aiming to preserve cryptographic information used by ransomware operations. If you suspect a ransomware is running on…☆25Updated 7 years ago
- Semi-Intelligent HoneyPot Network - Semi-Intelligent Reactive Environment Network☆13Updated 6 years ago
- Repository for scripts and tips for "Yara Scan Service"☆20Updated last year
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- A Maltego transform for VirusTotal Submitter Information☆31Updated 5 years ago
- ☆22Updated 3 years ago
- Ransomware Decryptors☆34Updated 2 years ago
- Short little AV Test to check Detection Rates☆22Updated 3 years ago
- Information Stealers Wall of Sheep (IS-WOS)☆13Updated 4 years ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Updated 5 years ago
- Batch scripts to capture volatile and log information from a target system☆19Updated 10 years ago
- Automated Payload Test Controller☆9Updated 7 years ago
- Triage automation for suspect URLs☆12Updated 5 years ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated last year
- The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent☆12Updated 7 years ago
- Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…☆27Updated 8 years ago
- Easy way to create a MISP event related to a Phishing page☆17Updated last year
- Collection Of Scripts And Utilities For Windows Event Hunting☆16Updated 4 years ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆34Updated 2 years ago
- The ORIGINAL decrypted copies of the Shadow Broker's equation_drug release. Contains Equation group's espionage DLL implants library. Use…☆18Updated 6 years ago
- Notebooks created to attack and secure Active Directory environments☆27Updated 5 years ago
- Exchange your privileges for Domain Admin privs by abusing Exchange☆16Updated 4 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆15Updated 3 years ago
- ProcDot Malware Sandbox☆21Updated this week
- A script to assist in processing forensic RAM captures for malware triage☆27Updated 3 years ago
- ☆11Updated 6 years ago
- This module installs and configures MISP (Malware Information Sharing Platform)☆13Updated 2 months ago