Norimaci is a simple and lightweight malware analysis sandbox for macOS
☆71Mar 3, 2020Updated 6 years ago
Alternatives and similar repositories for norimaci
Users that are interested in norimaci are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A project created with an aim to emulate and test exfiltration of data over different network protocols.☆30Mar 21, 2023Updated 3 years ago
- Unit tests for blue teams to aid with building detections for some common macOS post exploitation methods.☆109Oct 29, 2022Updated 3 years ago
- Forensic Artifact Collection Tool for macOS☆119Jul 28, 2025Updated 10 months ago
- CLI tool for testing Office documents with macros using MaliciousMacroBot☆12Dec 3, 2023Updated 2 years ago
- Yara rules☆21Mar 27, 2023Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A small tool to easily mount APFS image on macOS for forensics.☆17Jul 30, 2020Updated 5 years ago
- Notepad++ Syntax Highlighting for Languages Used by Cyber Security Professionals☆14May 31, 2020Updated 5 years ago
- Central IoC scanner based on Loki☆20Nov 12, 2021Updated 4 years ago
- macOS forensic timeline generator using the analysis result DBs of mac_apt☆94Sep 7, 2023Updated 2 years ago
- AWS Cloud Landscape Search Engine☆20Nov 29, 2023Updated 2 years ago
- Updated sample code for OS X and iOS Kernel Programming book☆39Jan 14, 2019Updated 7 years ago
- Modular malware analysis artifact collection and correlation framework☆56Apr 23, 2024Updated 2 years ago
- Git for me to put all my forensics stuff☆23Sep 2, 2025Updated 8 months ago
- ReconPal: Leveraging NLP for Infosec☆58May 23, 2022Updated 4 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- macOS Artifact Intelligence Tool☆13Apr 30, 2019Updated 7 years ago
- Generate bulk YARA rules from YAML input☆22Feb 3, 2020Updated 6 years ago
- Module(s) related to reading SEGB (fka "Biome") data from iOS, mascOS, etc.☆30Sep 9, 2025Updated 8 months ago
- Read and extract data from macOS spotlight databases☆132Dec 7, 2025Updated 5 months ago
- Active Directory change tracking☆17Dec 29, 2015Updated 10 years ago
- Enumerate AWS cloud resources based on provided credential☆52May 11, 2022Updated 4 years ago
- An exotic service bruteforce tool.☆13Apr 12, 2025Updated last year
- Decode security descriptors in $Secure on NTFS☆22Feb 24, 2022Updated 4 years ago
- Carbon Black Response IR tool☆56Dec 10, 2020Updated 5 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Use this library to automatically extract PE files compressed with aplib from a binary blob.☆34May 21, 2019Updated 7 years ago
- THC "R U There" network discovery tool☆30May 1, 2020Updated 6 years ago
- Automatically create YARA rules from malicious documents.☆211May 16, 2022Updated 4 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆75Jan 18, 2022Updated 4 years ago
- Bug's feed is a local hosted portal where you can search for the latest news, videos, CVEs, vulnerabilities...☆93Aug 31, 2022Updated 3 years ago
- ☆10Jul 19, 2020Updated 5 years ago
- Paper and Links to Crimeware in the Modern Era☆31Sep 5, 2019Updated 6 years ago
- ☆30Mar 23, 2026Updated 2 months ago
- A Swift port of some of the original PersistentJXA projects by D00MFist. Original PersistentJXA repo: https://github.com/D00MFist/Persist…☆34Apr 15, 2021Updated 5 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Script to pull newly-registered domains and check for similarity against a provided word list.☆13Aug 2, 2020Updated 5 years ago
- Tools for macOS Forensic Bootable media☆16May 20, 2020Updated 6 years ago
- A script to mine SQLite databases for hidden gems that might be overlooked☆57Sep 19, 2020Updated 5 years ago
- Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR☆258Oct 29, 2025Updated 7 months ago
- Quick and dirty script to parse bplists with Ruby☆14Oct 29, 2020Updated 5 years ago
- Incident Response - Fast suspicious file finder☆255Jan 24, 2026Updated 4 months ago
- File system monitoring utility based on FSEvents API MacOS☆10May 4, 2020Updated 6 years ago