mattnotmax / hash_hunterLinks
Command-line tool to search for malware samples in various repositories
☆11Updated 3 years ago
Alternatives and similar repositories for hash_hunter
Users that are interested in hash_hunter are comparing it to the libraries listed below
Sorting:
- Triaging Windows event logs based on SANS Poster☆39Updated 2 years ago
- ☆36Updated 2 years ago
- Yara rules☆22Updated 2 years ago
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆28Updated 2 years ago
- USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is exec…☆20Updated 3 years ago
- Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing☆23Updated 2 years ago
- ☆22Updated 2 years ago
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆15Updated 5 years ago
- ☆16Updated 7 months ago
- Python based CLI for MalwareBazaar☆37Updated last month
- Scans a list of raccoon servers from Tria.ge and extracts the config☆15Updated 2 years ago
- Placeholder for my detection repo and misc detection engineering content☆42Updated last year
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆74Updated 3 years ago
- ☆35Updated 3 years ago
- Yara Rules for Modern Malware☆79Updated last year
- Repository of tools, YARA rules, and code-snippets from Stairwell's research team.☆23Updated last year
- Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.☆68Updated 3 years ago
- Repository for LNK stuff☆31Updated 3 years ago
- C2 Active Scanner☆59Updated last year
- Simple PowerShell script to enable process scanning with Yara.☆98Updated 2 years ago
- ☆24Updated 3 years ago
- ☆15Updated 3 years ago
- ☆14Updated 2 years ago
- Hashes of infamous malware☆26Updated 2 years ago
- Threat Feeds, Threat lists, and regular lists of known IP ranges and domains. It updates every 4 hours.☆16Updated 4 years ago
- A proof-of-concept re-assembler for reverse VNC traffic.☆25Updated 2 years ago
- ☆38Updated 3 years ago
- Reads and prints information from the website MalAPI.io☆19Updated 3 years ago
- ☆23Updated 2 years ago