jgru / spamtrap-systemLinks
Collection of tools to build and run a distributed spamtrap system, consisting of IMAP and SMTP collectors and a backend that extracts attachments, potentially analyzes malware and reports results to MISP or ES.
☆12Updated last year
Alternatives and similar repositories for spamtrap-system
Users that are interested in spamtrap-system are comparing it to the libraries listed below
Sorting:
- A collection of tips for using MISP.☆74Updated 5 months ago
- A pySigma wrapper to manage detection rules.☆39Updated last week
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆104Updated 3 weeks ago
- YARA rule analyzer to improve rule quality and performance☆101Updated last month
- JPCERT/CC public YARA rules repository☆108Updated 5 months ago
- Import specific data sources into the Sigma generic and open signature format.☆78Updated 3 years ago
- Malware similarity platform with modularity in mind.☆78Updated 3 years ago
- ☆87Updated last year
- A PowerShell incident response script for quick triage☆80Updated 2 years ago
- Simple yara rule manager☆66Updated 2 years ago
- An open source platform to support analysts to organise their case and tasks☆73Updated this week
- Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.☆114Updated last year
- ☆35Updated 7 months ago
- Blueteam operational triage registry hunting/forensic tool.☆147Updated 2 years ago
- Python based CLI for MalwareBazaar☆37Updated 7 months ago
- The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…☆31Updated 3 years ago
- ☆7Updated 7 months ago
- Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…☆88Updated last week
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆78Updated 3 weeks ago
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆54Updated last year
- MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats☆54Updated this week
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- The Intelligent Process Lifecycle of Active Cyber Defenders☆31Updated 2 years ago
- Extract BITS jobs from QMGR queue and store them as CSV records☆75Updated 3 months ago
- Powershell module for VMWare vSphere forensics☆152Updated 7 months ago
- Jupyter Notebooks for Cyber Threat Intelligence☆35Updated last year
- A guide on how to write fast and memory friendly YARA rules☆144Updated 3 months ago
- ☆16Updated 2 months ago
- Detection Ideas & Rules repository.☆179Updated 3 years ago
- pySigma Splunk backend☆38Updated 3 weeks ago