knez / defender-dumpLinks
Dump quarantined files from Windows Defender
☆64Updated 3 years ago
Alternatives and similar repositories for defender-dump
Users that are interested in defender-dump are comparing it to the libraries listed below
Sorting:
- Multi-quarantine extractor☆47Updated last month
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆54Updated last year
- Rules shared by the community from 100 Days of YARA 2024☆85Updated 5 months ago
- RegRipper4.0☆52Updated last month
- USN Journal full path builder☆60Updated 9 months ago
- Carve file metadata from NTFS index ($I30) attributes☆66Updated last year
- Windows symbol tables for Volatility 3☆87Updated 11 months ago
- ☆38Updated 3 years ago
- Project based on RegRipper, to extract add'l value/pivot points from TLN events file☆85Updated 4 months ago
- Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's☆62Updated 6 months ago
- A C# based tool for analysing malicious OneNote documents☆114Updated 2 years ago
- The Windows Malware Analysis Reversing Core Tools☆95Updated 4 years ago
- Elastic Security Labs releases☆68Updated last week
- Recycle bin artifact parser☆49Updated 4 months ago
- A specification and style guide for YARA rules☆48Updated last year
- ☆201Updated 7 months ago
- ☆68Updated 6 months ago
- runsc loads 32/64 bit shellcode (depending on how runsc is compiled) in a way that makes it easy to load in a debugger. This code is base…☆36Updated 2 years ago
- Collection of scripts used to deobfuscate GOOTLOADER malware samples.☆62Updated 6 months ago
- Configuration Extractors for Malware☆106Updated 2 months ago
- YARA rule analyzer to improve rule quality and performance☆102Updated 2 months ago
- ☆250Updated last year
- A guide on how to write fast and memory friendly YARA rules☆144Updated 4 months ago
- ☆169Updated 2 months ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆79Updated last month
- Malware Samples that could be used for teaching students about malware analysis.☆56Updated last year
- A ProcessMonitor visualization application written in rust.☆181Updated last year
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Updated 2 years ago
- macOS Artifacts☆30Updated 3 months ago
- Rules Shared by the Community from 100 Days of YARA 2023☆77Updated 2 years ago