quarkslab / irma
IRMA is an asynchronous & customizable analysis system for suspicious files.
☆268Updated last year
Related projects: ⓘ
- VolDiff: Malware Memory Footprint Analysis based on Volatility☆192Updated 7 years ago
- Collaborative malware analysis framework☆373Updated 5 years ago
- ☆200Updated last year
- Modified edition of cuckoo☆392Updated 6 years ago
- Django web interface for managing Yara rules☆189Updated 6 years ago
- Auto Installer Script for Cuckoo Sandbox☆166Updated 6 years ago
- CRITs Services Collection☆182Updated 3 years ago
- ☆167Updated 3 years ago
- Modified edition of cuckoo☆268Updated 5 years ago
- CIF v3 -- the fastest way to consume threat intelligence☆181Updated last year
- Repository of modules and signatures contributed by the community☆322Updated last year
- Protocol Analysis/Decoder Framework☆487Updated last year
- An open source framework for enterprise level automated analysis.☆393Updated 2 years ago
- 16,432 Free Yara rules created by☆378Updated 5 years ago
- Automatic Yara Rule Generation☆328Updated 8 years ago
- A Yara rule generator for finding related samples and hunting☆155Updated 2 years ago
- Deception based detection techniques mapped to the MITRE’s ATT&CK framework☆280Updated 6 years ago
- File Scanning Framework☆285Updated 3 years ago
- Web interface for the Volatility Memory Forensics Framework☆259Updated 6 years ago
- ☆237Updated this week
- Differential Analysis of Malware in Memory☆209Updated 7 years ago
- Automatic deployment of Cuckoo Sandbox malware lab using Packer and Vagrant☆232Updated last year
- Docker container for MISP☆96Updated 6 years ago
- Modular file scanning/analysis framework☆616Updated 4 years ago
- Codex Gigas malware DNA profiling search engine discovers malware patterns and characteristics assisting individuals who are attracted in…☆154Updated 4 years ago
- ☆271Updated last year
- Threat Feed Aggregation, Made Easy☆166Updated 4 years ago
- Cuckoo Sandbox Dockerfile☆321Updated 4 years ago
- User guide of MISP☆254Updated 11 months ago