jstrosch / graph-maldoc-similar-imagesLinks
A script that extracts embedded images from Office Open XML (OOXML) documents and generates image hash similarity graphs that cluster visually similar images together. The script computes the Average Hash of each extracted image, then graphs the images if they meet the similarity threshold. The script can be used as a technique for visually iden…
☆21Updated 3 years ago
Alternatives and similar repositories for graph-maldoc-similar-images
Users that are interested in graph-maldoc-similar-images are comparing it to the libraries listed below
Sorting:
- Repository of tools, YARA rules, and code-snippets from Stairwell's research team.☆23Updated last year
- A python script that allows a researcher to merge databases from Malshare and Malware Bazaar to created enrriched datasets from SIEM tool…☆28Updated 5 years ago
- Malware similarity platform with modularity in mind.☆79Updated 4 years ago
- Cockroach is your primitive & immortal swiss army knife.☆49Updated 4 years ago
- A powershell parser for https://github.com/ufrisk/MemProcFS☆44Updated 4 years ago
- Standardized Malware Analysis Tool☆56Updated 4 years ago
- Merge all Yara rules from official Yara github repository in one .yar file☆30Updated 7 years ago
- Client library for the mwdb service by CERT Polska.☆42Updated 2 months ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆37Updated 2 years ago
- A Modular MWDB Utility to Collect Fresh Malware Samples☆34Updated 4 years ago
- ☆23Updated 2 years ago
- Python based CLI for MalwareBazaar☆39Updated 4 months ago
- Imphash-like calculation on Golang binaries☆49Updated 3 years ago
- FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.☆62Updated 6 months ago
- ☆27Updated 3 years ago
- Scripts, Yara rules and other files developed during malware investigations☆25Updated 3 years ago
- Yara rules☆21Updated 2 years ago
- A multi-threaded malware sample downloader based upon given MD-5/SHA-1/SHA-256 hashes, using multiple malware databases.☆30Updated 2 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆75Updated 3 years ago
- A tool to help malware analysts signature unique parts of RTF documents☆29Updated 11 months ago
- Maltego transforms to pivot between PE files based on their VirusTotal codeblocks☆18Updated 4 years ago
- ☆15Updated 4 years ago
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- ☆27Updated 2 years ago
- Collection of scripts used to analyse malware or emails☆20Updated 5 years ago
- Scans a malware file and lists down the related MBC (Malware Behavior Catalog) details.☆22Updated 3 years ago
- Random hunting ordiented yara rules☆98Updated 2 years ago
- Yara Based Detection Engine for web browsers☆51Updated 4 years ago
- TA505 unpacker Python 2.7☆47Updated 5 years ago
- Steezy - Ghetto Yara Generation☆15Updated 2 years ago