klsecservices / Publications
☆34Updated 2 months ago
Related projects: ⓘ
- ☆27Updated 7 years ago
- Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…☆64Updated last year
- Sandbox feature upgrade with the help of wrapped samples☆75Updated 6 years ago
- C# User Simulation☆33Updated last year
- Malware similarity platform with modularity in mind.☆75Updated 3 years ago
- A YARA Rule Performance Measurement Tool☆58Updated 6 months ago
- PSAttck is a light-weight framework for the MITRE ATT&CK Framework.☆38Updated 2 years ago
- Analytics for Accounting logs from Network devices☆16Updated 3 years ago
- I wanted to call this repo "Nuclear Football Codes". I was outvoted..☆68Updated 2 years ago
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 5 years ago
- Repository for my ATT&CK analysis research.☆68Updated 5 years ago
- Parsing MITRE EDR Evaluation results☆12Updated 5 years ago
- Generate ATT&CK Navigator layer file from PowerShell Empire agent logs☆47Updated 6 years ago
- A GUI/REST interface to find similarities in large sets (think: binaries). Based on ssdeep.☆19Updated 2 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆36Updated last year
- Collection of YARA signatures from individual research☆41Updated 10 months ago
- XOR Key Extractor☆48Updated last month
- Sample files for Control Things Platform☆36Updated 5 months ago
- Links to malware-related YARA rules☆14Updated last year
- ☆85Updated this week
- A repo to document API functions mapped to security events across diverse platforms☆74Updated 4 years ago
- Use Markov Chains to obfuscate data as other data☆49Updated 8 years ago
- ☆16Updated this week
- Presentation materials for talks I've given.☆20Updated 4 years ago
- SilkETW & SilkService☆40Updated 5 years ago
- ☆52Updated 5 years ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 6 years ago
- Matt's DFIR blog☆13Updated 10 months ago
- The project was moved here https://github.com/atomic-threat-coverage/atomic-threat-coverage☆23Updated 5 years ago