kk0m4k / docker-forensicsLinks
☆24Updated 5 years ago
Alternatives and similar repositories for docker-forensics
Users that are interested in docker-forensics are comparing it to the libraries listed below
Sorting:
- Cuckoo running in a nested hypervisor☆128Updated 5 years ago
- ☆52Updated 7 years ago
- Sandbox feature upgrade with the help of wrapped samples☆76Updated 7 years ago
- Prepare, Hunt, and Respond - Conceptual model against cyber attacks by JYVSECTEC☆61Updated 3 years ago
- hopefully a source-to-source deobfuscator, aiming at deobfuscating common scripts languages such as Powershell, VBA and Javascript. Curre…☆40Updated 6 years ago
- No-Script Automation Tool☆56Updated 7 years ago
- Malware Analysis, Threat Intelligence and Reverse Engineering: LABS☆82Updated 4 years ago
- Placeholder for IRIS-H Digital Forensics Tool☆15Updated 7 years ago
- Cuckoo Sandbox plugin for extracts configuration data of known malware☆135Updated last year
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated 2 years ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.☆14Updated 7 years ago
- Mindmaps for threat hunting - work in progress.☆151Updated 3 years ago
- Repository containing IOCs, CSV and MISP JSON from our blogs☆81Updated 4 years ago
- Fast incident overview☆40Updated 8 years ago
- A collection of infosec related scripts and information.☆53Updated last year
- A YARA Rule Performance Measurement Tool☆60Updated last year
- Resources and materials for DEF CON 2018 Packet Hunting Workshop☆79Updated 7 years ago
- Yara rules to be used with the Burp Yara-Scanner extension☆49Updated 3 years ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆103Updated 3 months ago
- Mitre Att&ck Technique Emulation☆82Updated 6 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆110Updated 7 years ago
- Community modules for FAME☆65Updated last month
- SuperPeHasher is a wrapper for several hash algorithms dedicated to PE file.☆28Updated 4 years ago
- Personal compilation of APT malware from whitepaper releases, documents and own research☆265Updated 6 years ago
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…☆62Updated last year
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆35Updated 6 years ago
- Website crawler with YARA detection☆90Updated 2 years ago
- Various scripts for different malware families☆106Updated 4 years ago
- A tool to assess data quality, built on top of the awesome OSSEM.☆79Updated 3 years ago
- Extract indicators of compromise from text, including "escaped" ones.☆162Updated 5 years ago