malice-plugins / get-mauled

Related projects: ⓘ

• scrapbird / sinkholed
  A sinkhole for collecting and analysing malicious traffic
  ☆17Updated 4 years ago
• malice-plugins / office
  Malice Office/OLE/RTF Plugin
  ☆13Updated 6 years ago
• kevthehermit / yaraMail
  Yara Scanner For IMAP Feeds and saved Streams
  ☆27Updated 4 years ago
• 0utrider / malrecon
  MalRecon - Basic Malware Reconnaissance and Analysis Tool
  ☆26Updated 7 years ago
• joxeankoret / deeptoad
  DeepToad is a library and a tool to clusterize similar files using fuzzy hashing
  ☆20Updated 4 years ago
• MAECProject / pefile-to-maec
  Generate MAEC XML from Ero Carrera's pefile output
  ☆15Updated 7 years ago
• silascutler / DetuxNG
  The Multiplatform Linux Sandbox
  ☆15Updated 9 months ago
• colincowie / viper-plugins
  Plugins for the Viper Framework
  ☆14Updated 4 years ago
• jheise / yarascanner
  Golang based web service to scan files with yara rules
  ☆26Updated 7 years ago
• zMarch / suspect
  suspect is a simple bash triage tool
  ☆17Updated 6 years ago
• DFIRnotes / rules
  Some rules, scripts of some use to us
  ☆9Updated this week
• Rurik / FileInfo
  Basic file metadata gathering script
  ☆21Updated 2 years ago
• hrbrmstr / go-hhhash
  #️⃣ 🕸️ 👤 HTTP Headers Hashing
  ☆14Updated last year
• nccgroup / Royal_APT
  Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research
  ☆52Updated 6 years ago
• 2igosha / sunburst_dga
  ☆22Updated 3 years ago
• intezer / analyze-scripts
  ☆25Updated last year
• yaunj / vim-yara
  Yara filetype plugin for Vim.
  ☆14Updated 3 years ago
• re-fox / documentation
  ☆13Updated 3 years ago
• d3vzer0 / cnc-relay
  Docker projects to retain beacon source IPs using C2 relaying infra
  ☆11Updated 5 years ago
• nccgroup / yaml2yara
  Generate bulk YARA rules from YAML input
  ☆21Updated 4 years ago
• proferosec / Threat-Intelligence
  A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.
  ☆10Updated 5 years ago
• carlpulley / volatility
  A collection of Volatility Framework plugins.
  ☆26Updated 11 years ago
• mandiant / rvmi-rekall
  Rekall Forensics and Incident Response Framework with rVMI extensions
  ☆32Updated 3 years ago
• arieljt / VTCodeBlocks-Maltego
  Maltego transforms to pivot between PE files based on their VirusTotal codeblocks
  ☆18Updated 3 years ago
• sourcefrenchy / certexfil.client
  ☆32Updated this week
• mandiant / rvmi-kvm
  Linux-KVM with rVMI extensions
  ☆22Updated 7 years ago
• fr0gger / Yara-Unprotect
  This repository regroups the Yara Rules for the Unprotect Project
  ☆24Updated 3 years ago
• mitre / yararules-python
  Easily scan with multiple yara rules from different sources.
  ☆12Updated 6 months ago
• 3c7 / infrastructure-tracking-schema
  ☆24Updated last year
• prolsen / yara-rules
  ☆13Updated this week