kbandla / pcaps

Related projects ⓘ

Alternatives and complementary repositories for pcaps

• sketchymoose / TotalRecall
  Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…
  ☆49Updated 7 years ago
• jeFF0Falltrades / IoCs
  A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo
  ☆30Updated 4 years ago
• pidydx / PyIOCe
  Python OpenIOC Editor
  ☆17Updated 8 years ago
• cloudjunky / malware-traffic
  Download all packet captures from http://malware-traffic-analysis.net/
  ☆19Updated 10 years ago
• naxonez / YaraRules
  Yaras Random
  ☆18Updated 5 years ago
• jjo-sec / volatility_plugins
  Volatility Plugins
  ☆21Updated 9 years ago
• abhinavbom / Yara-Rules
  A collection of Yara rules I have created so far
  ☆16Updated 4 years ago
• Rurik / PE_Carver
  Carves EXEs from given data files, using intelligent carving based upon PE headers
  ☆36Updated 7 years ago
• nccgroup / Royal_APT
  Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research
  ☆53Updated 6 years ago
• 0pc0deFR / YaraRules
  Multiple rules for yara-project for detect compiler/packer/protector
  ☆33Updated 4 years ago
• robbyFux / vtTool
  Tools
  ☆13Updated last year
• CIRCL / pe32-cert-dump
  Dump and parse embedded certificates from Windows binaries
  ☆11Updated 12 years ago
• mnemonic-no / dnscache
  Volatility memory forensics plugin for extracting Windows DNS Cache
  ☆29Updated 7 years ago
• hiddenillusion / yara-goodies
  Useful scripts, rules etc. for use with YARA
  ☆27Updated 3 years ago
• JamesHabben / MalwareStuff
  ☆16Updated 9 years ago
• williballenthin / python-evt
  Pure Python parser for classic Windows Event Log files (.evt)
  ☆48Updated last year
• CERT-Bund / yara-exporter
  Exporting MISP event attributes to yara rules usable with Thor apt scanner
  ☆24Updated 7 years ago
• Kafeine / public
  ☆19Updated 6 years ago
• binarlyhq / binarly-query
  Command-line Interface for Binar.ly
  ☆37Updated 7 years ago
• rj-chap / NFWorkshop
  Network Forensics Workshop Files
  ☆17Updated 9 years ago
• fr0gger / Yara-Unprotect
  This repository regroups the Yara Rules for the Unprotect Project
  ☆25Updated 3 years ago
• bsi-group / autorun-logger-server
  Server for receiving autorun data from the clients
  ☆13Updated 7 years ago
• 504ensicsLabs / regdecoderlive
  This is a copy of the Registry Decoder Live repository from Google Code
  ☆9Updated 9 years ago
• w8mej / IRKnowledge
  A curated list of tools for incident response
  ☆27Updated 8 months ago
• malware-kitten / yara_sig_tool
  A tool to generate yara signatures from function blocks
  ☆19Updated 9 years ago
• malware-kitten / public_yara_rules
  a collection of public yara rules
  ☆26Updated 5 years ago
• wolfpack1 / threatrecon
  API Tools
  ☆27Updated 8 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago