lucanag / emotet
☆10Updated 3 years ago
Related projects: ⓘ
- Scans through registry hives outputting entropy values for key/values, dumps binary contents to files...we are looking for those "fileles…☆10Updated 5 years ago
- Automatic generator of YARA modules based in protocol buffers☆14Updated last week
- Digital Forensics date and time☆23Updated 4 months ago
- Setting up a training environment for MISP☆11Updated last year
- Basic file metadata gathering script☆21Updated 2 years ago
- This script will pull and analyze syscalls in given application(s) allowing for easier security research purposes☆20Updated 3 years ago
- A PowerShell script to prevent Sysmon from writing its events☆14Updated 4 years ago
- Network based steganography based control channels and chat.☆8Updated 8 years ago
- radare2 script to help on COM objects reverse engineering☆11Updated 7 years ago
- Yara Scanner For IMAP Feeds and saved Streams☆27Updated 4 years ago
- xlrd2 is a variant of xlrd that is actively maintained☆23Updated last month
- Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…☆27Updated 8 years ago
- All TMF files that I extracted from Microsoft PDBs.☆12Updated 5 years ago
- Scripts and tools created for appx analysis talk (Magnet summit 2019)☆13Updated 6 months ago
- MalRecon - Basic Malware Reconnaissance and Analysis Tool☆26Updated 7 years ago
- ☆12Updated 3 years ago
- PowerShell script to help with privilege escalation on a compromised Windows box.☆22Updated 5 years ago
- ☆14Updated this week
- ☆22Updated 3 years ago
- ☆13Updated this week
- Get random bytes from the TPM (tool + BCrypt RNG provider)☆15Updated 3 years ago
- Fuzzer for finding Open Mail Relays☆14Updated 3 years ago
- Rekall Forensics and Incident Response Framework with rVMI extensions☆32Updated 3 years ago
- A recon-ng module for crawling Indeed.com for contacts and resumes.☆12Updated 8 years ago
- Local Privilege Escalation Miner☆22Updated 2 years ago
- Malware campaigns and APTs research by BlackArrow☆17Updated 4 years ago
- Empire is a pure PowerShell post-exploitation agent.☆11Updated 7 years ago
- Vulnerability Assessment and Penetration Testing Toolkit☆18Updated 2 years ago
- windows-operating-system-archaeology @Enigma0x3 @subTee☆44Updated 7 years ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Updated 5 years ago