rjhansen / nsrllookupLinks
Checks with NSRL RDS servers looking for for hash matches
☆114Updated 4 years ago
Alternatives and similar repositories for nsrllookup
Users that are interested in nsrllookup are comparing it to the libraries listed below
Sorting:
- ☆83Updated 2 years ago
- stoQ Public Plugins☆71Updated 2 years ago
- Python IOC Editor☆63Updated 10 years ago
- Static analysis tools for Microsoft Office Open XML files and documents☆70Updated 7 years ago
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Updated 7 years ago
- Reconstruct process trees from event logs☆146Updated 4 years ago
- Yet another registry parser☆132Updated 3 years ago
- A Windows Event Processing Utility☆46Updated 7 years ago
- AuditParser☆60Updated 11 years ago
- InvestigationPlaybookSpec☆73Updated 7 years ago
- Example programs used in the automating DFIR series☆63Updated 6 years ago
- Windows Live Artifacts Acquisition Script☆188Updated 3 years ago
- Command line utility and Python package to ease the (un)mounting of forensic disk images☆124Updated 2 years ago
- Community modules for FAME☆65Updated 5 months ago
- Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files☆118Updated last year
- Python tools for IOC (Indicator of Compromise) handling☆96Updated 3 years ago
- Hunting IOCs all day every day...☆86Updated last year
- MantaRay Automated Computer Forensic Triage Tool☆64Updated 6 years ago
- Yara rules for malware families seen as part of targeted threats project☆138Updated 8 years ago
- A dumb set of scripts for building a cuckoo rig☆61Updated 8 years ago
- PE Import Hash Generator☆80Updated 7 years ago
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated last year
- A collection of typical false positive indicators☆55Updated 4 years ago
- Digital Forensics Windows Registry (dfWinReg)☆52Updated 6 months ago
- A curated list of awesome YARA rules, tools, and people.☆33Updated last year
- CrowdStrike Feed Management System. CrowdFMS is a framework for automating collection and processing of samples from VirusTotal, by lever…☆128Updated 6 years ago
- A mapping of used malware names to commonly known family names☆62Updated 2 years ago
- Mass static malware analysis tool☆95Updated 3 years ago
- An ICAP Server with yara scanner for URL and content.☆59Updated 6 months ago
- Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.☆97Updated 10 years ago