jstrosch / graph-maldoc-similar-imagesLinks
A script that extracts embedded images from Office Open XML (OOXML) documents and generates image hash similarity graphs that cluster visually similar images together. The script computes the Average Hash of each extracted image, then graphs the images if they meet the similarity threshold. The script can be used as a technique for visually iden…
☆21Updated 3 years ago
Alternatives and similar repositories for graph-maldoc-similar-images
Users that are interested in graph-maldoc-similar-images are comparing it to the libraries listed below
Sorting:
- Generate YARA rules for OOXML documents.☆38Updated 2 years ago
- A Modular MWDB Utility to Collect Fresh Malware Samples☆34Updated 4 years ago
- ☆15Updated 3 years ago
- Repository of tools, YARA rules, and code-snippets from Stairwell's research team.☆22Updated last year
- Standardized Malware Analysis Tool☆52Updated 4 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆38Updated 2 years ago
- Collection of scripts used to analyse malware or emails☆19Updated 4 years ago
- VirusTotal Intelligence Search☆37Updated 5 years ago
- ☆22Updated 2 years ago
- Yara Based Detection Engine for web browsers☆47Updated 3 years ago
- Yara rules☆22Updated 2 years ago
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆44Updated 2 years ago
- Python based CLI for MalwareBazaar☆37Updated 7 months ago
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated last year
- Merge all Yara rules from official Yara github repository in one .yar file☆29Updated 6 years ago
- A collection of my public YARA signatures for various malware families☆29Updated 8 months ago
- Repository with selected IOCs and YARA rules for threat hunting.☆35Updated 2 weeks ago
- Malware similarity platform with modularity in mind.☆78Updated 3 years ago
- YARA Rule Strings Statistics Calculator and Malware Research Helper☆13Updated 3 years ago
- Malware Configuration Extraction Modules☆50Updated last year
- A python script that allows a researcher to merge databases from Malshare and Malware Bazaar to created enrriched datasets from SIEM tool…☆28Updated 5 years ago
- A powershell parser for https://github.com/ufrisk/MemProcFS☆44Updated 4 years ago
- ☆27Updated 3 years ago
- FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.☆55Updated last week
- Repository for scripts and tips for "Yara Scan Service"☆20Updated 2 years ago
- Steezy - Ghetto Yara Generation☆15Updated 2 years ago
- Low budget VirusTotal Intelligence Cosplay☆20Updated 3 years ago
- ☆18Updated 4 years ago
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- ☆23Updated 2 years ago