redcanaryco / public-researchLinks
Public repository for Red Canary Research
☆37Updated 4 years ago
Alternatives and similar repositories for public-research
Users that are interested in public-research are comparing it to the libraries listed below
Sorting:
- A powershell parser for https://github.com/ufrisk/MemProcFS☆44Updated 4 years ago
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- ☆18Updated 4 years ago
- Radare2 Metadata Extraction to Elasticsearch☆22Updated last year
- Generate YARA rules for OOXML documents.☆38Updated 2 years ago
- Converts Sigma detection rules to a Splunk alert configuration.☆13Updated 3 years ago
- various slides and presentations I've worked on☆19Updated 2 months ago
- ☆22Updated 4 years ago
- ☆15Updated 3 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆38Updated 2 years ago
- C# User Simulation☆32Updated 2 years ago
- Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.☆76Updated 3 years ago
- Standardized Malware Analysis Tool☆52Updated 4 years ago
- Presentation materials for talks I've given.☆20Updated 5 years ago
- Modular malware analysis artifact collection and correlation framework☆53Updated last year
- labs_modern_malware_c2 Originally supporting Defcon workshop, will morph into Attack Defend for C2.☆19Updated 2 years ago
- A set of tools for collecting forensic information☆26Updated 5 years ago
- YARA Rule Strings Statistics Calculator and Malware Research Helper☆13Updated 3 years ago
- ☆62Updated 11 months ago
- isodump - ISO dump utility☆40Updated 5 years ago
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆44Updated 2 years ago
- A summary about different projects/presentations/tools to test how to evade malware sandbox systems☆51Updated 6 years ago
- Get intelligence info (tags, mitre techniques, yara and more) and find similar malware in a fast and easy way☆18Updated 2 years ago
- ☆12Updated 3 years ago
- Static configuration extractor for the Karton framework☆10Updated 4 months ago
- Converts exported results of CAPA tool from .json format to another formats supporting by different tools.☆22Updated 3 years ago
- A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection☆31Updated 4 years ago
- A collection of my public YARA signatures for various malware families☆29Updated 8 months ago
- Scripts, Yara rules and other files developed during malware investigations☆25Updated 2 years ago
- Exfiltration based on custom X509 certificates☆26Updated last year