Generate YARA rules for OOXML documents.
☆38Jun 1, 2023Updated 2 years ago
Alternatives and similar repositories for apooxml
Users that are interested in apooxml are comparing it to the libraries listed below
Sorting:
- The mission of Black Lotus Labs is to leverage our network visibility to both help protect customers and keep the internet clean.☆12Jun 18, 2021Updated 4 years ago
- \ PowerAvails Powershell /☆10Jun 30, 2018Updated 7 years ago
- IcedID Decryption Tool☆28May 7, 2021Updated 4 years ago
- A tool to help malware analysts signature unique parts of RTF documents☆28Jan 5, 2026Updated last month
- Resources for I Want My EIP, presented at Derbycon 2017☆11Sep 23, 2017Updated 8 years ago
- Exploits for YARA 3.7.1 & 3.8.1☆32Dec 20, 2018Updated 7 years ago
- Currently proof-of-concept☆17Dec 17, 2021Updated 4 years ago
- Plugins for the Viper Framework☆14Sep 21, 2019Updated 6 years ago
- Communicate with a remote shell easily☆12Dec 10, 2017Updated 8 years ago
- A Python PoC for CVE-2018-9206☆13Oct 22, 2018Updated 7 years ago
- Generate representative samples from Pwned Passwords (HIBP)☆11Jan 6, 2022Updated 4 years ago
- C2 Active Scanner☆59Jun 19, 2024Updated last year
- A git history of Windows filesystems☆77Aug 21, 2020Updated 5 years ago
- Registry timestamp manipulation☆17Feb 26, 2014Updated 12 years ago
- PowerShell Module for parsing logs generated by Sysinternals Sysmon for Linux☆37Mar 20, 2022Updated 3 years ago
- Vocabulary Scraper script used in FLARE's analysis of Russian-language Carbanak source code☆37Apr 22, 2019Updated 6 years ago
- Malware analysis tool☆22Apr 27, 2025Updated 10 months ago
- Yara Rules for Modern Malware☆78Mar 3, 2024Updated 2 years ago
- A collection of Covid-19 related threat intelligence and resources.☆19Jul 17, 2020Updated 5 years ago
- C# Implementation of Jared Atkinson's Get-InjectedThread.ps1☆54Jul 11, 2021Updated 4 years ago
- Simple PowerShell script to enable process scanning with Yara.☆98Oct 4, 2022Updated 3 years ago
- Cyber Threat Intelligence☆78Dec 7, 2025Updated 2 months ago
- Nano meterpreter shell based on TinyMet☆28Aug 27, 2016Updated 9 years ago
- Joomla User-Agent/X-Forwarded-For RCE☆17Feb 5, 2016Updated 10 years ago
- A WebDAV PROPFIND covert channel to deliver payloads☆52Nov 14, 2017Updated 8 years ago
- This is a python tool aiming to make using TheHive webhooks easier.☆28Oct 23, 2020Updated 5 years ago
- ☆25Mar 19, 2025Updated 11 months ago
- A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.☆27Jul 27, 2022Updated 3 years ago
- A simple proof of concept for detecting use of Cobalt Strike's execute-assembly☆59Apr 1, 2022Updated 3 years ago
- Invoke-LiveResponse☆150Feb 22, 2022Updated 4 years ago
- home! sweet home☆25Aug 23, 2019Updated 6 years ago
- a collection of yara rules for binary analysis☆24Aug 24, 2017Updated 8 years ago
- PROJECT PAUSED 1/11/22, Tracking Threat Actor Emails in Phishing Kits. CC @PhishKitTracker on twitter if you find a #threatactoremail in …☆102Jan 11, 2022Updated 4 years ago
- Yara rules☆22Mar 27, 2023Updated 2 years ago
- Walking the PEB in VBA☆24Apr 6, 2020Updated 5 years ago
- ☆27Nov 26, 2024Updated last year
- Random hunting ordiented yara rules☆96Mar 27, 2023Updated 2 years ago
- Yaras Random☆24Feb 21, 2019Updated 7 years ago
- LAPS module for CrackMapExec☆29Oct 20, 2021Updated 4 years ago