kunai-project / sandboxLinks
Sandbox samples and monitor them with kunai
☆25Updated last week
Alternatives and similar repositories for sandbox
Users that are interested in sandbox are comparing it to the libraries listed below
Sorting:
- FLARE floss applied to all unpacked+dumped samples in Malpedia, pre-processed for further use.☆56Updated 3 weeks ago
- The core backend server handling API requests and task management☆42Updated this week
- Linux #rootkit and #malware revealer☆26Updated 10 months ago
- A zero dependency and customizable Python library for scanning Windows and Linux process memory.☆66Updated last year
- Powershell Linter☆61Updated this week
- Rules shared by the community from 100 Days of YARA 2024☆85Updated 5 months ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆52Updated 6 months ago
- Reads and prints information from the website MalAPI.io☆19Updated 2 years ago
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆33Updated last month
- Detection Engineering with YARA☆87Updated last year
- A web scraper to create MISP events and reports☆16Updated last week
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated last year
- Python based CLI for MalwareBazaar☆37Updated 7 months ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Updated 2 years ago
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆30Updated 2 months ago
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- Lightweight Python-Based Malware Analysis Pipeline☆34Updated this week
- Alternative YARA scanning engine☆70Updated 2 years ago
- Rules Shared by the Community from 100 Days of YARA 2023☆77Updated 2 years ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆83Updated last year
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆45Updated 2 years ago
- A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…☆11Updated this week
- FJTA (Forensic Journal Timeline Analyzer) is a tool that analyzes Linux filesystem (ext4, XFS) journals (not systemd-journald logs), gene…☆75Updated this week
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆79Updated last month
- A collection of my yara rules☆34Updated last year
- Jupyter Notebooks for Cyber Threat Intelligence☆35Updated last year
- Quick ESXi Log Parser☆21Updated 5 months ago
- C2 Active Scanner☆59Updated last year
- Yara rules☆22Updated 2 years ago
- Convert Sigma rules to SIEM queries, directly in your browser.☆89Updated last week