mgoffin / malwarecookbook
Malware Analyst's Cookbook stuffs
☆154Updated 9 years ago
Alternatives and similar repositories for malwarecookbook:
Users that are interested in malwarecookbook are comparing it to the libraries listed below
- Various snippets created during malware analysis☆459Updated 2 years ago
- Keep track of the labs from the book "Practical Malware Analysis"☆170Updated 5 years ago
- A repository of tools and scripts related to malware analysis☆248Updated 8 years ago
- snake - a malware storage zoo☆216Updated last year
- repository of tools & resources of the MMD team☆131Updated 2 years ago
- Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …☆137Updated 2 years ago
- VolatilityBot – An automated memory analyzer for malware samples and memory dumps☆264Updated 3 years ago
- Differential Analysis of Malware in Memory☆211Updated 8 years ago
- Personal research and publication on malware families☆137Updated 3 months ago
- For all these times you're asking yourself "what is this panel again?"☆255Updated last year
- Automatic Yara Rule Generation☆332Updated 9 years ago
- Set of tools for interacting with Malshare☆152Updated 5 years ago
- Smart DLL execution for malware analysis in sandbox systems☆143Updated 10 years ago
- Various scripts for different malware families☆106Updated 4 years ago
- Miscellaneous Malware RE☆195Updated 2 years ago
- ☆134Updated 6 years ago
- Python script to decode common encoded PowerShell scripts☆216Updated 6 years ago
- EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.☆192Updated last month
- Personal compilation of APT malware from whitepaper releases, documents and own research☆261Updated 6 years ago
- Cuckoo running in a nested hypervisor☆128Updated 4 years ago
- Wraps around various tools and provides some additional checks/information to produce a centralized report of a PE file.☆205Updated 11 years ago
- Autoruns plugin for the Volatility framework☆121Updated 5 years ago
- A collection of tools for dealing with TrickBot☆199Updated 7 years ago
- FCL (Fileless Command Lines) - Known command lines of fileless malicious executions☆467Updated 4 years ago
- Script lets you gather malicious software and c&c servers from open source platforms like Malshare, Malcode, Google, Cymon - vxvault, cyb…☆37Updated 5 years ago
- Web App for Volatility framework☆380Updated 5 months ago
- Automatic deployment of Cuckoo Sandbox malware lab using Packer and Vagrant☆236Updated 2 years ago
- Allows you to quickly query a Windows machine for RAM artifacts☆221Updated 4 years ago
- 16,432 Free Yara rules created by☆383Updated 5 years ago
- Yara Rule Analyzer and Statistics☆373Updated 2 years ago