nccgroup / MetadataPlusLinks
A tool to use novel locations to extract metadata from Office documents.
☆63Updated 2 years ago
Alternatives and similar repositories for MetadataPlus
Users that are interested in MetadataPlus are comparing it to the libraries listed below
Sorting:
- A zero dependency and customizable Python library for scanning Windows and Linux process memory.☆66Updated last year
- Yara Rules for Modern Malware☆78Updated last year
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆52Updated 8 months ago
- ☆33Updated last year
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆33Updated last month
- Linux Baseline and Forensic Triage Tool - BETA☆57Updated 2 years ago
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆31Updated 6 months ago
- A C# based tool for analysing malicious OneNote documents☆114Updated 2 years ago
- Quick ESXi Log Parser☆24Updated 7 months ago
- Tools and scripts to deploy and manage OpenRelik instances☆14Updated last month
- Simple PowerShell script to enable process scanning with Yara.☆95Updated 2 years ago
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- A home for detection content developed by the delivr.to team☆69Updated 2 weeks ago
- Detection rule validation☆41Updated last year
- A preconfigured Windows-based system designed for rapid forensic investigations in both Azure and AWS.☆39Updated last year
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆60Updated 2 years ago
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆82Updated last year
- ShellSweeping the evil.☆53Updated last year
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated 2 years ago
- PS-TrustedDocuments: PowerShell script to handle information on trusted documents for Microsoft Office☆35Updated 2 years ago
- ESXi Cyber Security Incident Response Script☆25Updated 11 months ago
- Linux #rootkit and #malware revealer☆26Updated last year
- C2 Active Scanner☆59Updated last year
- A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.☆26Updated 4 months ago
- Reads and prints information from the website MalAPI.io☆38Updated 3 years ago
- Rules Shared by the Community from 100 Days of YARA 2023☆78Updated 2 years ago
- Scripts to for ready-to-use Velociraptor instance deployment in Azure☆14Updated 2 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆80Updated 2 months ago
- Contains compiled binaries of Volatility☆34Updated 2 months ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Updated 2 years ago