mandiant / VM-PackagesLinks
Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.
☆180Updated last week
Alternatives and similar repositories for VM-Packages
Users that are interested in VM-Packages are comparing it to the libraries listed below
Sorting:
- ☆201Updated 7 months ago
- A C# based tool for analysing malicious OneNote documents☆113Updated 2 years ago
- A ProcessMonitor visualization application written in rust.☆180Updated last year
- Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR☆240Updated 2 months ago
- The Windows Malware Analysis Reversing Core Tools☆95Updated 4 years ago
- Repository of Yara Rules☆111Updated last month
- PowerDecode is a PowerShell-based tool that allows to deobfuscate PowerShell scripts obfuscated across multiple layers. The tool performs…☆188Updated last year
- ☆131Updated last week
- Jupyter Notebooks for the Blue Team☆144Updated 2 months ago
- A python script developed to process Windows memory images based on triage type.☆262Updated last year
- ☆136Updated 2 years ago
- Forensic Artifact Collection Tool Matrix☆85Updated 6 months ago
- ☆247Updated last year
- Free training course offered at Hack Space Con 2023☆138Updated 2 years ago
- Rules shared by the community from 100 Days of YARA 2024☆85Updated 5 months ago
- ☆223Updated 4 months ago
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆313Updated 3 weeks ago
- File analysis and management framework.☆83Updated last year
- Collection of malware persistence and hunting information. Be a persistent persistence hunter!☆179Updated 4 months ago
- MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.☆212Updated 2 years ago
- Creation of a laboratory for malware analysis in AWS☆97Updated 2 years ago
- A Jupyter notebook to assist with the analysis of the output generated from Volatility memory extraction framework.☆95Updated 2 years ago
- A repo hosting the Markua content for the EZ Tools manuals hosted on Leanpub☆75Updated last year
- Dump quarantined files from Windows Defender☆63Updated 3 years ago
- LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…☆123Updated 4 months ago
- Initial triage of Windows Event logs☆99Updated 11 months ago
- Active C&C Detector☆154Updated last year
- A collection of tools, scripts and personal research☆128Updated last month
- A guide on how to write fast and memory friendly YARA rules☆144Updated 3 months ago
- Cobalt Strike Beacon configuration extractor and parser.☆153Updated 3 years ago