Alternatives and similar repositories for APT32_OceanLotus_ThreatGroup

Users that are interested in APT32_OceanLotus_ThreatGroup are comparing it to the libraries listed below

• telsy-cyberops / research
  Telsy CTI Research Team
  ☆57Updated 4 years ago
• stvemillertime / ConventionEngine
  ConventionEngine - A Yara Rulepack for PDB Path Hunting
  ☆37Updated 2 years ago
• Tera0017 / TAFOF-Unpacker
  TA505 unpacker Python 2.7
  ☆47Updated 5 years ago
• sisoma2 / malware_analysis
  Scripts, Yara rules and other files developed during malware investigations
  ☆25Updated 3 years ago
• ohjeongwook / PowerShellRunBox
  Dynamic PowerShell Analysis Framework Based Upon PowerShell Debugging Functionality
  ☆83Updated 2 years ago
• sysopfb / malware_decoders
  Static based decoders for malware samples
  ☆94Updated 5 years ago
• arieljt / VTCodeSimilarity-YaraGen
  ☆97Updated 5 years ago
• intezer / MoP
  MoP - "Master of Puppets" - Advanced malware tracking framework
  ☆83Updated last year
• snemes / malware-analysis
  ☆23Updated 5 years ago
• stratosphereips / yara-rules
  Repository of Yara rules created by the Stratosphere team
  ☆28Updated 4 years ago
• seifreed / awesome-sandbox-evasion
  A summary about different projects/presentations/tools to test how to evade malware sandbox systems
  ☆55Updated 6 years ago
• jeFF0Falltrades / IoCs
  A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo
  ☆30Updated 5 years ago
• n1ght-w0lf / Uchihash
  A small utility to deal with malware embedded hashes.
  ☆52Updated 2 years ago
• faisalusuf / ThreatIntelligence
  Tracking APT IOCs
  ☆25Updated 4 years ago
• nao-sec / tknk_scanner
  Community-based integrated malware identification system
  ☆82Updated 2 years ago
• ITAYC0HEN / SUNBURST-Cracked
  The following repository contains a modified version of SUNBURST with cracekd hashes, comments and annotations.
  ☆56Updated 4 years ago
• StefanKelm / yara-rules
  Links to malware-related YARA rules
  ☆15Updated 3 years ago
• lemmou / RansomNoteFiles
  ☆24Updated last year
• c3rb3ru5d3d53c / mwcfg-modules
  Malware Configuration Extraction Modules
  ☆51Updated last year
• ThisIsSecurity / malware
  ☆43Updated 6 years ago
• jonny-jhnson / Detecting-Process-Injection-Techniques
  This is a repository that is meant to hold detections for various process injection techniques.
  ☆34Updated 5 years ago
• zom3y3 / ssdc
  ssdeep cluster analysis for malware files
  ☆31Updated 5 years ago
• archcloudlabs / r2elk
  Radare2 Metadata Extraction to Elasticsearch
  ☆23Updated last year
• arieljt / VTCodeBlocks-Maltego
  Maltego transforms to pivot between PE files based on their VirusTotal codeblocks
  ☆18Updated 4 years ago
• reb311ion / CapaExplorer
  Capa analysis importer for Ghidra.
  ☆63Updated 4 years ago
• denisugarte / PowerDrive
  A tool for de-obfuscating PowerShell scripts
  ☆71Updated 6 years ago
• palantir / exploitguard
  Documentation and supporting script sample for Windows Exploit Guard
  ☆158Updated last month
• y3n11 / Captain
  Userland API monitor for threat hunting
  ☆58Updated 5 years ago
• JPCERTCC / QuasarRAT-Analysis
  QuasarRAT analysis tools and research report
  ☆27Updated last year
• deepinstinct / DeMotet
  Unpacking and decryption tools for the Emotet malware
  ☆45Updated 3 years ago