jstrosch / graph-maldoc-similar-images
A script that extracts embedded images from Office Open XML (OOXML) documents and generates image hash similarity graphs that cluster visually similar images together. The script computes the Average Hash of each extracted image, then graphs the images if they meet the similarity threshold. The script can be used as a technique for visually iden…
☆20Updated 3 years ago
Alternatives and similar repositories for graph-maldoc-similar-images:
Users that are interested in graph-maldoc-similar-images are comparing it to the libraries listed below
- ☆22Updated 2 years ago
- Repository of tools, YARA rules, and code-snippets from Stairwell's research team.☆22Updated last year
- Collection of scripts used to analyse malware or emails☆19Updated 4 years ago
- YARA Rule Strings Statistics Calculator and Malware Research Helper☆13Updated 3 years ago
- Generate YARA rules for OOXML documents.☆38Updated last year
- ☆15Updated 3 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆38Updated last year
- Steezy - Ghetto Yara Generation☆15Updated last year
- A collection of my public YARA signatures for various malware families☆29Updated 5 months ago
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆43Updated last year
- FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.☆50Updated 11 months ago
- A Modular MWDB Utility to Collect Fresh Malware Samples☆34Updated 3 years ago
- This repository regroups the Yara Rules for the Unprotect Project☆24Updated 4 years ago
- Python based CLI for MalwareBazaar☆36Updated 3 months ago
- A powershell parser for https://github.com/ufrisk/MemProcFS☆44Updated 3 years ago
- NTFS file system specimens☆14Updated last year
- Random hunting ordiented yara rules☆95Updated last year
- ☆34Updated 2 years ago
- Merge all Yara rules from official Yara github repository in one .yar file☆28Updated 6 years ago
- ☆27Updated 2 years ago
- VSCode extension for the YARA pattern matching language☆63Updated last year
- Malware similarity platform with modularity in mind.☆78Updated 3 years ago
- Yara rules☆20Updated last year
- Modular malware analysis artifact collection and correlation framework☆53Updated 9 months ago
- Standardized Malware Analysis Tool☆52Updated 3 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Updated 4 years ago
- Repository with selected IOCs and YARA rules for threat hunting.☆35Updated last month
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- MWDB exercises☆19Updated last month
- ☆15Updated 2 years ago