jstrosch / graph-maldoc-similar-imagesLinks
A script that extracts embedded images from Office Open XML (OOXML) documents and generates image hash similarity graphs that cluster visually similar images together. The script computes the Average Hash of each extracted image, then graphs the images if they meet the similarity threshold. The script can be used as a technique for visually iden…
☆21Updated 3 years ago
Alternatives and similar repositories for graph-maldoc-similar-images
Users that are interested in graph-maldoc-similar-images are comparing it to the libraries listed below
Sorting:
- VirusTotal Intelligence Search☆38Updated 5 years ago
- Generate YARA rules for OOXML documents.☆38Updated 2 years ago
- Scans a malware file and lists down the related MBC (Malware Behavior Catalog) details.☆22Updated 2 years ago
- A powershell parser for https://github.com/ufrisk/MemProcFS☆44Updated 4 years ago
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆45Updated 2 years ago
- A tool to help malware analysts signature unique parts of RTF documents☆29Updated 5 months ago
- Malware similarity platform with modularity in mind.☆78Updated 3 years ago
- SuperPeHasher is a wrapper for several hash algorithms dedicated to PE file.☆28Updated 3 years ago
- ☆22Updated 2 years ago
- Royal Road RTF Weaponizer object decoder☆24Updated 9 months ago
- FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.☆57Updated last month
- Repository of tools, YARA rules, and code-snippets from Stairwell's research team.☆22Updated last year
- YARA Rule Strings Statistics Calculator and Malware Research Helper☆13Updated 3 years ago
- Standardized Malware Analysis Tool☆53Updated 4 years ago
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated last year
- A Modular MWDB Utility to Collect Fresh Malware Samples☆34Updated 4 years ago
- Python based CLI for MalwareBazaar☆37Updated 7 months ago
- Yara rules☆22Updated 2 years ago
- ☆33Updated 3 years ago
- A multi-threaded malware sample downloader based upon given MD-5/SHA-1/SHA-256 hashes, using multiple malware databases.☆30Updated 2 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆38Updated 2 years ago
- Steezy - Ghetto Yara Generation☆15Updated 2 years ago
- ☆34Updated 2 years ago
- ☆15Updated 3 years ago
- Python wrappers for mal_unpack☆36Updated last year
- Malware Configuration Extraction Modules☆50Updated last year
- mod to myaut2exe decompiler☆14Updated 7 years ago
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- TA505 unpacker Python 2.7☆47Updated 5 years ago
- Yara Based Detection Engine for web browsers☆49Updated 3 years ago