Alternatives and similar repositories for APTMalwareNotes:

Users that are interested in APTMalwareNotes are comparing it to the libraries listed below

• lukaszbb / apt-analysis
  ☆49Updated 9 years ago
• kevthehermit / YaraPcap
  Process HTTP Pcaps With YARA
  ☆101Updated 11 years ago
• silascutler / MalPipe
  Malware/IOC ingestion and processing engine
  ☆104Updated 6 years ago
• idiom / pftriage
  Python tool and library to help analyze files during malware triage and analysis.
  ☆78Updated 4 years ago
• mpars0ns / scansio-sonar-es
  Python scripts to parse scans.io ssl data and ingest into elasticsearch for searching
  ☆33Updated 8 years ago
• jacobsoo / ThreatHunting
  This is just my personal compilation of APT malware from whitepaper releases, documents and malware samples from my personal research.
  ☆31Updated 5 years ago
• nccgroup / Royal_APT
  Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research
  ☆53Updated 6 years ago
• telsy-cyberops / research
  Telsy CTI Research Team
  ☆57Updated 4 years ago
• WeaverHeavy / Threat-Intelligence-Tradecraft
  ☆27Updated 7 years ago
• Cyberclues / rtf_exploit_extractor
  Script to extract malicious payload and decoy document from CVE-2015-1641 exploit documents
  ☆23Updated 8 years ago
• neu5ron / malware-traffic-analysis-pcaps
  malware-traffic-analysis.net PCAPs repository.
  ☆35Updated 8 years ago
• tylabs / qs_old
  Command line tool for scanning streams within office documents plus xor db attack
  ☆126Updated last year
• darkquasar / WMI_Persistence
  A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics
  ☆85Updated 7 years ago
• robbyFux / Ragpicker
  Ragpicker is a Plugin based malware crawler with pre-analysis and reporting functionalities. Use this tool if you are testing antivirus p…
  ☆94Updated 9 years ago
• 1aN0rmus / Yara
  Yara rules
  ☆47Updated 11 years ago
• threatminer / APTnotes
  Various public documents, whitepapers and articles about APT campaigns
  ☆54Updated 8 years ago
• Cymmetria / StrutsHoneypot
  Struts Apache 2 based honeypot as well as a detection module for Apache 2 servers
  ☆72Updated 7 years ago
• raw-data / malarchive
  Malware samples observed in the wild from time to time
  ☆12Updated 5 years ago
• DissectMalware / MalwareCMDMonitor
  Shows command lines used by latest instances analyzed on Hybrid-Analysis
  ☆43Updated 6 years ago
• nccgroup / IP-reputation-snort-rule-generator
  A tool to generate Snort rules based on public IP reputation data
  ☆56Updated 11 years ago
• brakmic / Sinkholes
  Malware Sinkhole List in various formats
  ☆102Updated 2 years ago
• lion-gu / ioc-explorer
  Explore Indicators of Compromise Automatically
  ☆94Updated 4 years ago
• jaimeblasco / AlienvaultLabs
  Alienvault Labs Projects Random Stuff
  ☆79Updated 11 years ago
• MalwareLu / tools
  Malware.lu tools
  ☆63Updated 11 years ago
• sketchymoose / TotalRecall
  Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…
  ☆49Updated 7 years ago
• sysopfb / malware_decoders
  Static based decoders for malware samples
  ☆92Updated 4 years ago
• mandiant / pycommands
  PyCommand Scripts for Immunity Debugger
  ☆36Updated 10 years ago
• CrowdStrike / chopshop
  Mitre chopshop network decoder framework
  ☆30Updated 8 years ago
• 3gstudent / bitsadminexec
  Use bitsadmin to maintain persistence and bypass Autoruns
  ☆66Updated 7 years ago
• fox-it / cobaltstrike-extraneous-space
  Historical list of {Cobalt Strike,NanoHTTPD} servers
  ☆122Updated 5 years ago