sandflysecurity / sandfly-entropyscanLinks
Entropy scanner for Linux to detect packed or encrypted binaries related to malware. Finds malicious files and Linux processes and gives output with cryptographic hashes.
☆158Updated last year
Alternatives and similar repositories for sandfly-entropyscan
Users that are interested in sandfly-entropyscan are comparing it to the libraries listed below
Sorting:
- Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…☆141Updated 4 months ago
- simple YARA-based IOC scanner☆169Updated 4 months ago
- Collection of rules created using YARA-Signator over Malpedia☆131Updated 7 months ago
- Rules Shared by the Community from 100 Days of YARA 2023☆77Updated 2 years ago
- Visually inspect and force decode YARA and regex matches found in both binary and text data. With Colors.☆129Updated this week
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆63Updated 2 years ago
- Elastic Security Labs releases☆68Updated last week
- Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.☆249Updated 2 years ago
- Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation☆105Updated 3 years ago
- LOKI2 - Simple IOC and YARA Scanner☆94Updated 11 months ago
- BlackBerry Threat Research & Intelligence☆98Updated last year
- Python scripts for Malware Bazaar☆153Updated last year
- ELFEN: Automated Linux Malware Analysis Sandbox☆126Updated 11 months ago
- Forensic Artifact Collection Tool Matrix☆85Updated 7 months ago
- YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA☆104Updated last month
- Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)☆82Updated 2 months ago
- YaraScanner is a file pattern-matching tool based on YARA rules.☆57Updated 2 years ago
- File analysis and management framework.☆87Updated last year
- Automated YARA Rule Standardization and Quality Assurance Tool☆227Updated last week
- The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access…☆65Updated this week
- ☆143Updated 3 weeks ago
- JA4TScan is an active TCP server fingerprinting tool.☆79Updated 9 months ago
- Anything Sysmon related from the MSTIC R&D team☆153Updated last year
- Initial triage of Windows Event logs☆99Updated last year
- IOCs published by Black Lotus Labs☆121Updated last month
- Let's be scanned. A low-interaction honeypot focused on network scanners and bots. It integrates very well with IVRE to build a self-host…☆125Updated last week
- A guide on how to write fast and memory friendly YARA rules☆144Updated 4 months ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆52Updated 6 months ago
- A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...☆139Updated last year
- Small web frontend for using openAI's GPT-3.5 and GPT-4's API☆55Updated 2 months ago