intezer / analyze-scripts
☆26Updated last year
Related projects ⓘ
Alternatives and complementary repositories for analyze-scripts
- A summary about different projects/presentations/tools to test how to evade malware sandbox systems☆48Updated 5 years ago
- TA505 unpacker Python 2.7☆46Updated 4 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆37Updated last year
- Handy scripts to speed up malware analysis☆35Updated last year
- Maltego transforms to pivot between PE files based on their VirusTotal codeblocks☆18Updated 3 years ago
- Malware Analysis, Anti-Analysis, and Anti-Anti-Analysis☆43Updated 7 years ago
- Flare-On solutions☆36Updated 5 years ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 6 years ago
- ☆48Updated 4 years ago
- Telsy CTI Research Team☆57Updated 3 years ago
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆53Updated 6 years ago
- This repository regroups the Yara Rules for the Unprotect Project☆25Updated 3 years ago
- SuperPeHasher is a wrapper for several hash algorithms dedicated to PE file.☆27Updated 3 years ago
- Go Lang Portable Executable Parser☆37Updated 3 years ago
- a modified version base on Tracecorn☆20Updated 5 years ago
- ☆18Updated 4 years ago
- This script is used for extracting DDE in docx and xlsx☆12Updated 6 years ago
- A sinkhole for collecting and analysing malicious traffic☆17Updated 4 years ago
- ☆41Updated 6 years ago
- Liberating dem proprietary APT implants☆21Updated 4 years ago
- Converts exported results of CAPA tool from .json format to another formats supporting by different tools.☆21Updated 2 years ago
- A C++ POC for process injection using NtCreateSectrion, NtMapViewOfSection and RtlCreateUserThread. Credit to @spotheplanet for his notes…☆42Updated 3 years ago
- Steezy - Ghetto Yara Generation☆15Updated last year
- ☆66Updated last year
- Transfer EIP control to shellcode during malware analysis investigation☆73Updated 10 years ago
- ☆23Updated 4 years ago
- Radare2 Metadata Extraction to Elasticsearch☆21Updated 5 months ago
- hopefully a source-to-source deobfuscator, aiming at deobfuscating common scripts languages such as Powershell, VBA and Javascript. Curre…☆40Updated 5 years ago
- Tool to decompress data from Windows 10 page files and memory dumps, that has been compressed by the Windows 10 memory manager.☆48Updated 5 years ago