rabbitstack / fibratusLinks
Adversary tradecraft detection, protection, and hunting
☆2,342Updated this week
Alternatives and similar repositories for fibratus
Users that are interested in fibratus are comparing it to the libraries listed below
Sorting:
- Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-mem…☆3,323Updated last week
- FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.☆3,545Updated last week
- Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…☆2,162Updated last week
- The FLARE team's open-source tool to identify capabilities in executable files.☆5,345Updated this week
- FakeNet-NG - Next Generation Dynamic Network Analysis Tool☆1,925Updated last month
- VirusTotal Wanna Be - Now with 100% more Hipster☆1,688Updated 2 years ago
- Windows kernel and user mode emulation.☆1,658Updated 2 months ago
- Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Po…☆3,207Updated 4 months ago
- Collaborative Malware Analysis Platform at Scale☆742Updated last month
- Portable Executable reversing tool with a friendly GUI☆3,104Updated last month
- Set of tools to analyze Windows sandboxes for exposed attack surface.☆2,165Updated last week
- Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.☆5,241Updated last month
- Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU☆1,665Updated last year
- Rapidly Search and Hunt through Windows Forensic Artefacts☆3,168Updated last month
- A post exploitation framework designed to operate covertly on heavily monitored environments☆2,097Updated 3 years ago
- The pattern matching swiss knife☆8,791Updated last week
- Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that…☆3,661Updated 11 months ago
- Loki - Simple IOC and YARA Scanner☆3,543Updated 6 months ago
- pefile is a Python module to read and work with PE (Portable Executable) files☆1,952Updated 9 months ago
- Malware Configuration And Payload Extraction☆2,452Updated this week
- Python module for viewing Portable Executable (PE) files in a tree-view using pefile and PyQt5. Can also be used with IDA Pro and Rekall …☆1,328Updated 2 years ago
- A Pin Tool for tracing API calls etc☆1,439Updated last month
- Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.☆6,321Updated last month
- HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux☆2,668Updated 3 months ago
- Diaphora, the most advanced Free and Open Source program diffing tool.☆3,888Updated 6 months ago
- Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from mem…☆3,985Updated 7 months ago
- Network Analysis Tool☆3,239Updated 2 years ago
- Interactive CTF Exploration Tool☆1,655Updated 3 years ago
- A collection of links related to VMware escape exploits☆1,432Updated 8 months ago
- Open EDR public repository☆2,446Updated last year