hpthreatresearch/tools external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

hpthreatresearch/tools

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/hpthreatresearch/tools)

Close

hpthreatresearch / toolsView on GitHubMore

• External links
• Readme badge

Scripts and tools accompanying HP Threat Research blog posts and reports.

☆50Apr 10, 2024Updated 2 years ago

Alternatives and similar repositories for tools

Users that are interested in tools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• cocaman / urlhaus

  View on GitHub
  ☆28Jul 5, 2025Updated 9 months ago
• cocaman / analysis_scripts

  View on GitHub
  Collection of scripts used to analyse malware or emails
  ☆20Oct 6, 2020Updated 5 years ago
• hpthreatresearch / iocs

  View on GitHub
  Indicators of Compromise (IOCs) accompanying HP Threat Research blog posts and reports.
  ☆29Apr 10, 2024Updated 2 years ago
• myrtus0x0 / SMAT

  View on GitHub
  Standardized Malware Analysis Tool
  ☆56Mar 9, 2021Updated 5 years ago
• Tera0017 / TAFOF-Unpacker

  View on GitHub
  TA505 unpacker Python 2.7
  ☆46Jun 22, 2020Updated 5 years ago
• Wordpress hosting with auto-scaling - Free Trial • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• The-DFIR-Report / cyberchef-recipes

  View on GitHub
  ☆21May 8, 2022Updated 3 years ago
• dwmetz / PSHero

  View on GitHub
  PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.
  ☆37Jul 11, 2023Updated 2 years ago
• NexusFuzzy / Edison

  View on GitHub
  Tool to decrypt encrypted strings in AgentTesla
  ☆16Jan 24, 2022Updated 4 years ago
• MSAdministrator / carcass

  View on GitHub
  carcass is a Python package to generate python package scaffolding based on best practices
  ☆17Jan 10, 2022Updated 4 years ago
• tsale / translated_conti_leaked_comms

  View on GitHub
  Leaked communication of Conti ransomware group from Jan 29, 2021 to Feb 27, 2022
  ☆134Mar 2, 2022Updated 4 years ago
• ssp4rk / threatintel

  View on GitHub
  ☆11Mar 12, 2021Updated 5 years ago
• tropChaud / Categorized-Adversary-TTPs

  View on GitHub
  Merge of two major cyber adversary datasets, MITRE ATT&CK and ETDA/ThaiCERT Threat Actor Cards, enabling victim/motivation-adversary-tech…
  ☆55Jul 31, 2022Updated 3 years ago
• tsale / Threat-Intelligence-Playbooks

  View on GitHub
  High-level Threat Intelligence playbooks
  ☆21Mar 6, 2021Updated 5 years ago
• StrangerealIntel / DailyIOC

  View on GitHub
  IOC from articles, tweets for archives
  ☆318Dec 12, 2023Updated 2 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• OllieJC / tbat

  View on GitHub
  Threat Box Assessment Tool
  ☆19Mar 5, 2026Updated last month
• ForensicITGuy / handy-cti

  View on GitHub
  Resources I've found useful for my CTI work
  ☆12Dec 27, 2023Updated 2 years ago
• target / halogen

  View on GitHub
  Automatically create YARA rules from malicious documents.
  ☆211May 16, 2022Updated 3 years ago
• ch33r10 / BlueSpace2021

  View on GitHub
  Ekoparty's BlueSpace Keynote November 2021. Shoutout to @plugxor Muchas Gracias!!!
  ☆13Jun 5, 2023Updated 2 years ago
• h0rv4th / c2matrix-analyzer

  View on GitHub
  Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack
  ☆12Apr 18, 2020Updated 5 years ago
• ppt0 / easyhunting

  View on GitHub
  Get intelligence info (tags, mitre techniques, yara and more) and find similar malware in a fast and easy way
  ☆19Jun 6, 2022Updated 3 years ago
• jeFF0Falltrades / YARA-Signatures

  View on GitHub
  A collection of my public YARA signatures for various malware families
  ☆30Sep 20, 2024Updated last year
• GDATASoftwareAG / MSE

  View on GitHub
  Malware sample exchange system and API intended for Anti-Virus companies and researchers.
  ☆16Aug 19, 2024Updated last year
• StrangerealIntel / Orion

  View on GitHub
  A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...
  ☆141Nov 19, 2023Updated 2 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• 0ffsetTrainingSolutions / QakbotTools

  View on GitHub
  Tools for assisting the reverse engineering of Qakbot
  ☆11Jul 21, 2021Updated 4 years ago
• elysiumsecurityltd / IRM

  View on GitHub
  Incident Response Methodologies (IRM), also called Incident Playbook, based on the work done by the CERT Societe General
  ☆24Dec 16, 2021Updated 4 years ago
• dalvarezperez / umse

  View on GitHub
  Universal Malware Sample Encryption
  ☆13Jan 5, 2024Updated 2 years ago
• nov3mb3r / trident

  View on GitHub
  A PowerShell incident response script for quick triage
  ☆81Jul 18, 2022Updated 3 years ago
• aaronst / talks

  View on GitHub
  Presentation materials for talks I've given.
  ☆20Oct 14, 2019Updated 6 years ago
• rkovar / sunburstlookups

  View on GitHub
  Quick lookup files for SUNBURST Backdoor
  ☆12Dec 15, 2020Updated 5 years ago
• clr2of8 / DeployREMnux

  View on GitHub
  DeployREMnux is a Python script that will deploy a cloud instance of the public REMnux distribution in the Amazon cloud (AWS).
  ☆16Dec 20, 2019Updated 6 years ago
• infosec-intern / vscode-yara

  View on GitHub
  VSCode extension for the YARA pattern matching language
  ☆63Jan 10, 2024Updated 2 years ago
• NexusFuzzy / AzoDecrypt

  View on GitHub
  Script which is able to decrypt data sent to AzoRult 3.3 Server
  ☆11Feb 5, 2021Updated 5 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• cocaman / malware-bazaar

  View on GitHub
  Python scripts for Malware Bazaar
  ☆158Jun 3, 2024Updated last year
• NextronSystems / gimphash

  View on GitHub
  Imphash-like calculation on Golang binaries
  ☆49Jul 2, 2022Updated 3 years ago
• silence-is-best / c2db

  View on GitHub
  c2 traffic
  ☆196Feb 6, 2023Updated 3 years ago
• sisoma2 / malware_analysis

  View on GitHub
  Scripts, Yara rules and other files developed during malware investigations
  ☆27Aug 19, 2022Updated 3 years ago
• blacklanternsecurity / sigma-rules

  View on GitHub
  A collection of Sigma rules organized by MITRE ATT&CK technique
  ☆18Apr 1, 2026Updated 2 weeks ago
• advanced-threat-research / DarkSide-Config-Extract

  View on GitHub
  ☆35Oct 29, 2021Updated 4 years ago
• Neo23x0 / xorex

  View on GitHub
  XOR Key Extractor
  ☆51Aug 10, 2024Updated last year