pandora-analysis / pandora
Pandora is an analysis framework to discover if a file is suspicious and conveniently show the results
☆248Updated last week
Related projects: ⓘ
- A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…☆160Updated 3 weeks ago
- Rules generated from our investigations.☆186Updated last month
- MISP Playbooks☆167Updated last month
- Yet Another Yara Automaton - Automatically curate open source yara rules and run scans☆260Updated 8 months ago
- Jupyter Notebooks for the Blue Team☆139Updated last year
- A python script developed to process Windows memory images based on triage type.☆259Updated 9 months ago
- Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…☆121Updated 11 months ago
- Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.☆288Updated 2 months ago
- 🚨 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system☆264Updated 10 months ago
- This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole …☆191Updated 3 years ago
- Russia / Ukraine 2022 conflict related IOCs from CERT Orange Cyberdefense Threat Intelligence Datalake☆173Updated last year
- Data visualization for blue teams☆122Updated last year
- Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…☆248Updated 11 months ago
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆154Updated 10 months ago
- A tool designed to hunt for Phishing Kit source code☆213Updated last year
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆154Updated 2 years ago
- Signatures and IoCs from public Volexity blog posts.☆307Updated last month
- Artifact collection tool for *nix systems☆190Updated 6 months ago
- Automated YARA Rule Standardization and Quality Assurance Tool☆154Updated this week
- An easy to use PowerShell script to collect memory and disk forensics for DFIR investigations.☆266Updated 3 weeks ago
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆192Updated 2 years ago
- A list of my personal projects☆166Updated 2 years ago
- An application to analyze the EML file☆264Updated 2 months ago
- Sublime rules for email attack detection, prevention, and threat hunting.☆235Updated this week
- Cyber Incident Response Team Playbook Battle Cards☆356Updated 4 months ago
- Repository of attack and defensive information for Business Email Compromise investigations☆216Updated 3 weeks ago
- A curated list of Awesome Threat Intelligence Blogs from the DOGESEC community.☆312Updated 2 weeks ago
- Collection of Jupyter Notebooks by @fr0gger_☆139Updated 2 weeks ago
- An opensource sigma conversion tool built using pysigma☆90Updated 2 weeks ago
- The Sigma command line interface based on pySigma☆130Updated last month