lucanag / emotet

Related projects: ⓘ

• woanware / reg-entropy-scanner
  Scans through registry hives outputting entropy values for key/values, dumps binary contents to files...we are looking for those "fileles…
  ☆10Updated 5 years ago
• VirusTotal / protoc-gen-yara
  Automatic generator of YARA modules based in protocol buffers
  ☆14Updated last week
• log2timeline / dfdatetime
  Digital Forensics date and time
  ☆23Updated 4 months ago
• cudeso / misp-training-environment
  Setting up a training environment for MISP
  ☆11Updated last year
• Rurik / FileInfo
  Basic file metadata gathering script
  ☆21Updated 2 years ago
• Truvis / SyscallExtractorAnalyzer
  This script will pull and analyze syscalls in given application(s) allowing for easier security research purposes
  ☆20Updated 3 years ago
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆14Updated 4 years ago
• optiv / netneedle
  Network based steganography based control channels and chat.
  ☆8Updated 8 years ago
• newlog / r2com
  radare2 script to help on COM objects reverse engineering
  ☆11Updated 7 years ago
• kevthehermit / yaraMail
  Yara Scanner For IMAP Feeds and saved Streams
  ☆27Updated 4 years ago
• DissectMalware / xlrd2
  xlrd2 is a variant of xlrd that is actively maintained
  ☆23Updated last month
• mgeeky / LISET
  Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…
  ☆27Updated 8 years ago
• mattifestation / MSFTTraceMessageFormat
  All TMF files that I extracted from Microsoft PDBs.
  ☆12Updated 5 years ago
• ydkhatri / Appx-Analysis
  Scripts and tools created for appx analysis talk (Magnet summit 2019)
  ☆13Updated 6 months ago
• 0utrider / malrecon
  MalRecon - Basic Malware Reconnaissance and Analysis Tool
  ☆26Updated 7 years ago
• StrangerealIntel / DeltaFlare
  ☆12Updated 3 years ago
• GreySec-Security-Forums / WinRootHelper
  PowerShell script to help with privilege escalation on a compromised Windows box.
  ☆22Updated 5 years ago
• dfirence / pe-compass
  ☆14Updated this week
• 2igosha / sunburst_dga
  ☆22Updated 3 years ago
• prolsen / yara-rules
  ☆13Updated this week
• gentilkiwi / kirandomtpm
  Get random bytes from the TPM (tool + BCrypt RNG provider)
  ☆15Updated 3 years ago
• tg12 / OpenMailRelayFuzzer
  Fuzzer for finding Open Mail Relays
  ☆14Updated 3 years ago
• mandiant / rvmi-rekall
  Rekall Forensics and Incident Response Framework with rVMI extensions
  ☆32Updated 3 years ago
• ZonkSec / indeed-recon-ng-script
  A recon-ng module for crawling Indeed.com for contacts and resumes.
  ☆12Updated 8 years ago
• M507 / Miner
  Local Privilege Escalation Miner
  ☆22Updated 2 years ago
• blackarrowsec / malware-research
  Malware campaigns and APTs research by BlackArrow
  ☆17Updated 4 years ago
• Kevin-Robertson / Empire
  Empire is a pure PowerShell post-exploitation agent.
  ☆11Updated 7 years ago
• abatsakidis / Scythian
  Vulnerability Assessment and Penetration Testing Toolkit
  ☆18Updated 2 years ago
• jeperez / windows-operating-system-archaeology
  windows-operating-system-archaeology @Enigma0x3 @subTee
  ☆44Updated 7 years ago
• proferosec / Threat-Intelligence
  A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.
  ☆10Updated 5 years ago