scudette / rekall-agent-server
Rekall is an endpoint security solution.
☆39Updated 6 years ago
Related projects: ⓘ
- Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.☆97Updated 9 years ago
- Python unbup script for McAfee .bup files (with some additional fun features). This script is fully implemented in python it's not just a…☆36Updated 6 years ago
- A warehouse for your malware☆131Updated 11 years ago
- Python tool and library to help analyze files during malware triage and analysis.☆77Updated 4 years ago
- ☆15Updated this week
- Some IR notes☆73Updated 8 years ago
- PowerShell scripts for Hard Drive forensics and parsing Windows Artifacts☆56Updated 3 years ago
- A tool designed for consistent and safe capture of off network web resources.☆35Updated 7 years ago
- A Rekall interactive document for a Memory Analysis workshop/course.☆43Updated 7 years ago
- Automated Memory Forensic☆35Updated 6 years ago
- Python interface to the CRITs API☆22Updated 7 years ago
- Mystique may be used to discover infection markers that can be used to vaccinate endpoints against malware. It receives as input a malici…☆80Updated 6 years ago
- Sandbox feature upgrade with the help of wrapped samples☆75Updated 6 years ago
- ☆36Updated 7 years ago
- A collection of Volatility Framework plugins.☆26Updated 11 years ago
- A ready to deploy docker container for a fresh sandbox for on-the-fly malware analysis☆42Updated 7 years ago
- MantaRay Automated Computer Forensic Triage Tool☆63Updated 5 years ago
- Malware/IOC ingestion and processing engine☆102Updated 5 years ago
- Performs OCR on image files and scans them for matches to YARA rules☆39Updated 5 years ago
- Plugins to add funtionality to ProcDOT. http://www.procdot.com☆22Updated 11 months ago
- A collection of scripts to initialize a windows VM to run all the malwares!☆105Updated 4 years ago
- stoQ Public Plugins☆71Updated last year
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 3 years ago
- Process HTTP Pcaps With YARA☆99Updated 11 years ago
- Force-Directed Graph Generator for Volatility Ouputs☆26Updated 5 years ago
- Exfiltration Framework - Exfiltration modeling tool written in Python. Naisho attempts to avoid detection from DLP, IPS/IDS egress filter…☆37Updated 9 years ago
- ThreatTracker is a Python script designed to monitor and generate alerts on given sets of indicators of compromise (IOCs) indexed by a se…☆65Updated 9 years ago
- Python IOC Editor☆61Updated 9 years ago
- Lootbox downloads open directories shared on Twitter.☆36Updated 3 years ago
- Python tools for IOC (Indicator of Compromise) handling☆96Updated 2 years ago