pandora-analysis / pandoraLinks
Pandora is an analysis framework to discover if a file is suspicious and conveniently show the results
☆270Updated this week
Alternatives and similar repositories for pandora
Users that are interested in pandora are comparing it to the libraries listed below
Sorting:
- Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…☆126Updated 2 years ago
- Rip Raw is a small tool to analyse the memory of compromised Linux systems.☆132Updated 3 years ago
- Open Source Platform for storing, organizing, and searching documents related to cyber threats☆166Updated last year
- Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.☆320Updated 6 months ago
- Website for ail-typo-squatting library☆65Updated last week
- Data visualization for blue teams☆126Updated 2 years ago
- Artifact collection tool for *nix systems☆212Updated last year
- This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.☆116Updated last year
- Russia / Ukraine 2022 conflict related IOCs from CERT Orange Cyberdefense Threat Intelligence Datalake☆175Updated 2 years ago
- A tool designed to hunt for Phishing Kit source code☆224Updated 2 years ago
- 🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system☆293Updated 5 months ago
- Yet Another Yara Automaton - Automatically curate open source yara rules and run scans☆293Updated last year
- The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…☆155Updated 3 years ago
- An application to analyze the EML file☆293Updated 3 weeks ago
- A python script developed to process Windows memory images based on triage type.☆265Updated last year
- Cisco Orbital - Osquery queries by Talos☆136Updated last year
- Threat Intel Platform for T-POTs☆159Updated this week
- acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.☆108Updated last week
- Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…☆255Updated 10 months ago
- Ransomware leak site monitoring☆316Updated 3 years ago
- MISP Playbooks☆211Updated 3 months ago
- ☆226Updated 3 years ago
- TAPIR is a multi-user, client/server, incident response framework☆46Updated 3 years ago
- Threat Hunting tool about Sysmon and graphs☆334Updated 2 years ago
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆205Updated 3 years ago
- Collection of Jupyter Notebooks by @fr0gger_☆178Updated last week
- This script is made to collect the most valiable artifacts for foreniscs or incident reponse investigation rather than imaging the whole …☆204Updated 4 years ago
- Algorithme d'apprentissage statistique permettant de créer un modèle sur les lignes de commandes des évènements "Création de Processus", …☆84Updated last year
- LOKI2 - Simple IOC and YARA Scanner☆102Updated 3 months ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆146Updated 2 years ago