pmelson / narcLinks
☆53Updated 4 years ago
Alternatives and similar repositories for narc
Users that are interested in narc are comparing it to the libraries listed below
Sorting:
- Generate a Yara rule to find base64-encoded files containg a specific keyword☆40Updated 6 years ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Updated 6 years ago
- Sandbox feature upgrade with the help of wrapped samples☆76Updated 6 years ago
- Mystique may be used to discover infection markers that can be used to vaccinate endpoints against malware. It receives as input a malici…☆82Updated 7 years ago
- hopefully a source-to-source deobfuscator, aiming at deobfuscating common scripts languages such as Powershell, VBA and Javascript. Curre…☆40Updated 5 years ago
- A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics☆86Updated 7 years ago
- Various Modules & Scripts for use with Viper Framework☆27Updated 5 years ago
- Performs OCR on image files and scans them for matches to YARA rules☆41Updated 6 years ago
- A collection of typical false positive indicators☆55Updated 4 years ago
- Incident Response Scripts☆30Updated 5 years ago
- Providing timelines based on OSINT Reports☆32Updated last year
- ☆76Updated 6 years ago
- Volatility plugins created by the author☆44Updated 9 years ago
- A collection of infosec related scripts and information.☆53Updated 7 months ago
- A simple many-rules to many-files YARA scanner for incident response or malware zoos.☆26Updated 6 years ago
- Various public documents, whitepapers and articles about APT campaigns☆54Updated 9 years ago
- A Windows Event Processing Utility☆46Updated 7 years ago
- CDPO is a tool to validate, de-duplicate, combine, query, and encrypt track data recovered from a breach.☆15Updated 7 years ago
- Generate ATT&CK Navigator layer file from PowerShell Empire agent logs☆49Updated 6 years ago
- pollen - A command-line tool for interacting with TheHive☆35Updated 5 years ago
- SMTP server / sinkhole for collecting spam☆44Updated 6 years ago
- Steezy - Ghetto Yara Generation☆15Updated 2 years ago
- Malware similarity platform with modularity in mind.☆78Updated 3 years ago
- Repository for my ATT&CK analysis research.☆69Updated 6 years ago
- Splunk integration with MISP☆12Updated 7 years ago
- An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree…☆60Updated 7 years ago
- Scoring Engine for CTF competitions☆47Updated 2 years ago
- Various config files obtained during malware analysis☆67Updated 6 years ago
- BTG's purpose is to make fast and efficient search on IOC☆70Updated 6 years ago
- PE Import Hash Generator☆80Updated 7 years ago