kirk-sayre-work / ViperMonkeyLinks
A VBA parser and emulation engine to analyze malicious macros.
☆96Updated last week
Alternatives and similar repositories for ViperMonkey
Users that are interested in ViperMonkey are comparing it to the libraries listed below
Sorting:
- Random hunting ordiented yara rules☆97Updated 2 years ago
- "Evolving AppCompat/AmCache data analysis beyond grep"☆205Updated 3 years ago
- Invoke-LiveResponse☆148Updated 3 years ago
- c2 traffic☆189Updated 2 years ago
- Signature engine for all your logs☆170Updated last year
- A repo to document API functions mapped to security events across diverse platforms☆75Updated 5 years ago
- A modern Python-3-based alternative to RegRipper☆196Updated 2 months ago
- Collection of useful, up to date, Carbon Black Response Queries☆83Updated 4 years ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆104Updated last month
- ☆304Updated 4 years ago
- Extract common Windows artifacts from source images and VSCs☆65Updated 4 years ago
- ☆127Updated 4 months ago
- Automagically extract forensic timeline from volatile memory dump☆131Updated last year
- Various capabilities for static malware analysis.☆78Updated 9 months ago
- Lazy Office Analyzer☆122Updated 8 years ago
- Yet another registry parser☆132Updated 3 years ago
- Automatically create YARA rules from malicious documents.☆211Updated 3 years ago
- Extension to Cuckoo Sandbox open source projects, adds support to AWS cloud functionalities and enables running emulation on auto-scaling…☆136Updated 3 years ago
- Repository containing IOCs, CSV and MISP JSON from our blogs☆81Updated 3 years ago
- Dump of organized knowledge on DFIR☆134Updated 3 years ago
- Set of Yara rules for finding files using magics headers☆138Updated 4 years ago
- Simple yara rule manager☆66Updated 2 years ago
- Detection Ideas & Rules repository.☆179Updated 3 years ago
- ☆116Updated last year
- ☆277Updated 2 years ago
- Collecting & Hunting for IOCs with gusto and style☆240Updated 3 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Updated 7 years ago
- ATT&CK Remote Threat Hunting Incident Response☆200Updated 6 months ago
- Sigma Detection Rule Repository☆88Updated 5 years ago
- Cuckoo running in a nested hypervisor☆128Updated 5 years ago