c2 traffic
☆194Feb 6, 2023Updated 3 years ago
Alternatives and similar repositories for c2db
Users that are interested in c2db are comparing it to the libraries listed below
Sorting:
- For all these times you're asking yourself "what is this panel again?"☆260Jan 29, 2026Updated last month
- IOC from articles, tweets for archives☆318Dec 12, 2023Updated 2 years ago
- Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which …☆446Oct 26, 2022Updated 3 years ago
- Active C2 IoCs☆99Nov 28, 2022Updated 3 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆29Jun 11, 2020Updated 5 years ago
- An extendable tool to extract and aggregate IoCs from threat feeds☆33Feb 6, 2024Updated 2 years ago
- ☆24Sep 28, 2022Updated 3 years ago
- A tool to help malware analysts signature unique parts of RTF documents☆28Jan 5, 2026Updated 2 months ago
- Threat Box Assessment Tool☆19Aug 15, 2021Updated 4 years ago
- Toolset for research malware and Cobalt Strike beacons☆211Mar 11, 2025Updated 11 months ago
- Website crawler with YARA detection☆89Aug 20, 2023Updated 2 years ago
- Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)☆585May 5, 2024Updated last year
- ☆451Aug 4, 2021Updated 4 years ago
- ☆83Jan 31, 2020Updated 6 years ago
- JPCERT/CC public YARA rules repository☆109Nov 14, 2025Updated 3 months ago
- Awesome VirusTotal Intelligence Search Queries☆332May 16, 2023Updated 2 years ago
- Generates YARA rules to detect malware using API hashing☆17Mar 16, 2021Updated 4 years ago
- Volatility plugin for extracts configuration data of known malware☆495Dec 22, 2023Updated 2 years ago
- ☆1,131Dec 19, 2023Updated 2 years ago
- MoP - "Master of Puppets" - Advanced malware tracking framework☆84Feb 11, 2026Updated 3 weeks ago
- Scripts for communication with Bunitu Trojan C&Cs☆19Oct 29, 2015Updated 10 years ago
- Signature engine for all your logs☆172Nov 13, 2023Updated 2 years ago
- Online hash checker for Virustotal and other services☆846Mar 21, 2025Updated 11 months ago
- Python Decoders for Common Remote Access Trojans☆1,116Jul 16, 2024Updated last year
- Process Spawn Control is a Powershell tool which aims to help in the behavioral (process) analysis of malware. PsC suspends newly launche…☆265Jan 15, 2022Updated 4 years ago
- Automatic YARA rule generation for Malpedia☆168Sep 8, 2022Updated 3 years ago
- ☆23Aug 1, 2020Updated 5 years ago
- ☆11Dec 18, 2018Updated 7 years ago
- Extracting AsyncRAT configuration using CyberChef☆14May 4, 2022Updated 3 years ago
- A collection of scripts for dealing with Cobalt Strike beacons in Python☆169Jan 5, 2021Updated 5 years ago
- A collection of my public YARA signatures for various malware families☆30Sep 20, 2024Updated last year
- Repository of YARA rules made by Trellix ATR Team☆625Mar 18, 2025Updated 11 months ago
- Scan files or process memory for CobaltStrike beacons and parse their configuration☆922Aug 19, 2021Updated 4 years ago
- Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups☆723Dec 26, 2022Updated 3 years ago
- Interesting APT Report Collection And Some Special IOCs☆2,929Updated this week
- PowerShell script for deobfuscating encoded PowerShell scripts☆434Feb 4, 2021Updated 5 years ago
- DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted …☆340Feb 7, 2025Updated last year
- Splunk integration with MISP☆12Apr 14, 2018Updated 7 years ago
- Static based decoders for malware samples☆94Jul 27, 2020Updated 5 years ago