pmelson / pyhexdmp

Related projects ⓘ

Alternatives and complementary repositories for pyhexdmp

• ruppde / yara_rules
  Yara rules
  ☆19Updated last year
• woanware / etw-event-dumper
  ☆31Updated 2 years ago
• mandiant / pulsesecure_exploitation_countermeasures
  ☆23Updated last year
• nettitude / PoshC2_IOCs
  A list of IOCs applicable to PoshC2
  ☆24Updated 4 years ago
• antman1p / PrintTCCdb
  JXA script for Mythic that prints the TCC.db
  ☆15Updated 3 years ago
• uf0o / PykDumper
  Dumping credentials through windbg and pykd
  ☆38Updated last year
• jfmaes / talks-cons
  aggregated repo for all conferences and talks I am giving
  ☆17Updated 3 years ago
• blackarrowsec / malware-research
  Malware campaigns and APTs research by BlackArrow
  ☆18Updated 4 years ago
• 0xThiebaut / PCAPeek
  A proof-of-concept re-assembler for reverse VNC traffic.
  ☆25Updated last year
• k3idii / ION
  Indicators of Normality
  ☆12Updated 2 years ago
• 2igosha / sunburst_dga
  ☆22Updated 3 years ago
• DissectMalware / MDIExtractor
  ☆15Updated 2 years ago
• IceMoonHSV / Sim
  C# User Simulation
  ☆33Updated 2 years ago
• mandiant / apooxml
  Generate YARA rules for OOXML documents.
  ☆37Updated last year
• mauronz / binja-emotet
  ☆18Updated 4 years ago
• signalblur / impelf
  "ImpELF: A Python-based ELF hashing utility that generates unique fingerprints for ELF binaries using their imported functions and librar…
  ☆15Updated 10 months ago
• airbus-seclab / nbutools
  Tools for offensive security of NetBackup infrastructures
  ☆38Updated last year
• fboldewin / misc_malware
  ☆37Updated 3 years ago
• fox-it / dissect.esedb
  A Dissect module implementing a parser for Microsofts Extensible Storage Engine Database (ESEDB), used for example in Active Directory, E…
  ☆17Updated 4 months ago
• matterpreter / FindETWProviderImage
  Quickly search for references to a GUID in DLLs, EXEs, and drivers
  ☆59Updated 2 years ago
• DissectMalware / OfficeForensicTools
  A set of tools for collecting forensic information
  ☆26Updated 4 years ago
• MITRECND / picaboo
  Specialized tool to dump Position Independent Code.
  ☆21Updated 4 years ago
• snemes / malware-analysis
  ☆23Updated 4 years ago
• schrodyn / steezy
  Steezy - Ghetto Yara Generation
  ☆15Updated last year
• sourcefrenchy / certexfil
  Exfiltration based on custom X509 certificates
  ☆26Updated 8 months ago
• zeflow / Sigma2SplunkAlert
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆13Updated 3 years ago
• cedowens / Persistent-Swift
  A Swift port of some of the original PersistentJXA projects by D00MFist. Original PersistentJXA repo: https://github.com/D00MFist/Persist…
  ☆30Updated 3 years ago
• cedowens / Spotlight-Enum-Kit
  JXA and swift code that can perform some macOS situational awareness without generating TCC prompts.
  ☆37Updated 2 years ago