pandora-analysis / pandora
Pandora is an analysis framework to discover if a file is suspicious and conveniently show the results
☆254Updated this week
Alternatives and similar repositories for pandora:
Users that are interested in pandora are comparing it to the libraries listed below
- Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…☆127Updated last year
- Rip Raw is a small tool to analyse the memory of compromised Linux systems.☆130Updated 2 years ago
- Data visualization for blue teams☆124Updated 2 years ago
- A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…☆176Updated last week
- Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…☆253Updated 2 months ago
- Automated YARA Rule Standardization and Quality Assurance Tool☆183Updated this week
- Rules generated from our investigations.☆191Updated 3 months ago
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆159Updated last year
- Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.☆298Updated 2 months ago
- 🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system☆275Updated 3 months ago
- Sublime rules for email attack detection, prevention, and threat hunting.☆269Updated this week
- Collection of Jupyter Notebooks by @fr0gger_☆146Updated 4 months ago
- Repository of attack and defensive information for Business Email Compromise investigations☆241Updated last week
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆199Updated 2 years ago
- MISP Playbooks☆182Updated last week
- A tool designed to hunt for Phishing Kit source code☆217Updated last year
- A list of my personal projects☆173Updated 2 years ago
- Artifact collection tool for *nix systems☆200Updated 10 months ago
- A python script developed to process Windows memory images based on triage type.☆261Updated last year
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆155Updated 2 years ago
- Yet Another Yara Automaton - Automatically curate open source yara rules and run scans☆271Updated last year
- A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs☆690Updated 3 weeks ago
- 🏴☠️💰 Another Ransomware gang tracker☆173Updated this week
- Detection Ideas & Rules repository.☆178Updated 3 years ago
- Threat Hunting tool about Sysmon and graphs☆330Updated last year
- Cisco Orbital - Osquery queries by Talos☆129Updated 5 months ago
- Russia / Ukraine 2022 conflict related IOCs from CERT Orange Cyberdefense Threat Intelligence Datalake☆174Updated 2 years ago
- This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole …☆195Updated 4 years ago
- Docker image for Velocidex Velociraptor☆118Updated 7 months ago
- Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.☆241Updated 2 years ago