Alternatives and similar repositories for APTMalwareNotes

Users that are interested in APTMalwareNotes are comparing it to the libraries listed below

• lukaszbb / apt-analysis
  ☆52Updated 10 years ago
• jacobsoo / ThreatHunting
  This is just my personal compilation of APT malware from whitepaper releases, documents and malware samples from my personal research.
  ☆31Updated 5 years ago
• nccgroup / Royal_APT
  Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research
  ☆53Updated 7 years ago
• WeaverHeavy / Threat-Intelligence-Tradecraft
  ☆27Updated 7 years ago
• raw-data / malarchive
  Malware samples observed in the wild from time to time
  ☆12Updated 6 years ago
• Cyberclues / rtf_exploit_extractor
  Script to extract malicious payload and decoy document from CVE-2015-1641 exploit documents
  ☆23Updated 8 years ago
• telsy-cyberops / research
  Telsy CTI Research Team
  ☆57Updated 4 years ago
• Cymmetria / StrutsHoneypot
  Struts Apache 2 based honeypot as well as a detection module for Apache 2 servers
  ☆71Updated 8 years ago
• sysopfb / malware_decoders
  Static based decoders for malware samples
  ☆93Updated 5 years ago
• nccgroup / CVE-2017-8759
  NCC Group's analysis and exploitation of CVE-2017-8759 along with further refinements
  ☆95Updated 7 years ago
• 0x71 / cuckoo-linux
  Linux malware analysis based on Cuckoo Sandbox.
  ☆40Updated 2 years ago
• robbyFux / Ragpicker
  Ragpicker is a Plugin based malware crawler with pre-analysis and reporting functionalities. Use this tool if you are testing antivirus p…
  ☆93Updated 10 years ago
• kevthehermit / YaraPcap
  Process HTTP Pcaps With YARA
  ☆105Updated 12 years ago
• kcreyts / plugxdecoder
  Decodes PlugX traffic and encrypted/compressed artifacts
  ☆38Updated 12 years ago
• 3gstudent / bitsadminexec
  Use bitsadmin to maintain persistence and bypass Autoruns
  ☆66Updated 8 years ago
• mandiant / pycommands
  PyCommand Scripts for Immunity Debugger
  ☆36Updated 11 years ago
• fox-it / cobaltstrike-extraneous-space
  Historical list of {Cobalt Strike,NanoHTTPD} servers
  ☆121Updated 6 years ago
• matthewdunwoody / POSHSPY
  POSHSPY backdoor code
  ☆44Updated 8 years ago
• ThisIsSecurity / malware
  ☆43Updated 6 years ago
• neu5ron / malware-traffic-analysis-pcaps
  malware-traffic-analysis.net PCAPs repository.
  ☆38Updated 9 years ago
• JR0driguezB / malware_configs
  Various config files obtained during malware analysis
  ☆67Updated 6 years ago
• nao-sec / tknk_scanner
  Community-based integrated malware identification system
  ☆82Updated 2 years ago
• lasq88 / deobfuscate
  Python script to automatically deobfuscate malware code
  ☆59Updated 7 years ago
• keithjjones / visualize_logs
  A Python library and command line tools to provide interactive log visualization.
  ☆142Updated 2 years ago
• darkquasar / WMI_Persistence
  A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics
  ☆87Updated 7 years ago
• Neo23x0 / webshell-intel
  Scan web server for known webshell names and responses
  ☆50Updated 8 years ago
• 3c7 / aptmap
  A map displaying threat actors from the misp-galaxy
  ☆33Updated 2 years ago
• fireeye / tools
  general purpose and malware specific analysis tools
  ☆102Updated 9 years ago
• intel / Resilient-ML-Research-Platform
  ☆79Updated 3 years ago
• idiom / pftriage
  Python tool and library to help analyze files during malware triage and analysis.
  ☆78Updated 5 years ago