pandora-analysis / pandoraLinks
Pandora is an analysis framework to discover if a file is suspicious and conveniently show the results
☆263Updated this week
Alternatives and similar repositories for pandora
Users that are interested in pandora are comparing it to the libraries listed below
Sorting:
- Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…☆126Updated last year
- An application to analyze the EML file☆290Updated 2 months ago
- Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…☆254Updated 7 months ago
- 🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system☆288Updated last month
- A python script developed to process Windows memory images based on triage type.☆262Updated last year
- This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole …☆202Updated 4 years ago
- Rip Raw is a small tool to analyse the memory of compromised Linux systems.☆131Updated 3 years ago
- MISP Playbooks☆203Updated 2 weeks ago
- Yet Another Yara Automaton - Automatically curate open source yara rules and run scans☆283Updated last year
- Rules generated from our investigations.☆196Updated last week
- Artifact collection tool for *nix systems☆209Updated last year
- A tool designed to hunt for Phishing Kit source code☆222Updated 2 years ago
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆165Updated last year
- Rapidly Search and Hunt through Linux Forensics Artifacts☆193Updated last year
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆321Updated last month
- A list of my personal projects☆177Updated 2 years ago
- Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.☆249Updated 2 years ago
- Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.☆315Updated 2 months ago
- Data visualization for blue teams☆126Updated 2 years ago
- LOKI2 - Simple IOC and YARA Scanner☆94Updated 11 months ago
- Automated YARA Rule Standardization and Quality Assurance Tool☆227Updated last week
- Russia / Ukraine 2022 conflict related IOCs from CERT Orange Cyberdefense Threat Intelligence Datalake☆175Updated 2 years ago
- A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…☆218Updated 2 weeks ago
- A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs☆720Updated 2 months ago
- Threat Hunting tool about Sysmon and graphs☆335Updated 2 years ago
- Live forensic artifacts collector☆167Updated 11 months ago
- Algorithme d'apprentissage statistique permettant de créer un modèle sur les lignes de commandes des évènements "Création de Processus", …☆83Updated last year
- IATelligence is a Python script that will extract the IAT of a PE file and request GPT to get more information about the API and the ATT&…☆367Updated 2 years ago
- acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.☆104Updated this week
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆203Updated 2 years ago