stoerchl / yara_zip_module
☆12Updated last year
Related projects: ⓘ
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆36Updated last year
- Telsy CTI Research Team☆57Updated 3 years ago
- A collection of my public YARA signatures for various malware families☆28Updated last month
- Generate YARA rules for OOXML documents.☆37Updated last year
- Dynamic PowerShell Analysis Framework Based Upon PowerShell Debugging Functionality☆82Updated last year
- TA505 unpacker Python 2.7☆45Updated 4 years ago
- ☆15Updated last year
- Steezy - Ghetto Yara Generation☆15Updated last year
- ☆23Updated 5 months ago
- Specialized tool to dump Position Independent Code.☆21Updated 4 years ago
- Scripts, Yara rules and other files developed during malware investigations☆24Updated 2 years ago
- Maltego transforms to pivot between PE files based on their VirusTotal codeblocks☆18Updated 3 years ago
- This is a repository that is meant to hold detections for various process injection techniques.☆32Updated 4 years ago
- This repository regroups the Yara Rules for the Unprotect Project☆24Updated 3 years ago
- Trace ScriptBlock execution for powershell v2☆39Updated 4 years ago
- Tools for inspecting YARA bytecode☆15Updated 4 years ago
- ☆31Updated 2 years ago
- ☆25Updated last year
- This tool is the result of a reverse engineering process of the Windows service called SysMain. Time to interact with the prefetch files …☆30Updated 3 years ago
- Unpacking and decryption tools for the Emotet malware☆46Updated 2 years ago
- Generate bulk YARA rules from YAML input☆21Updated 4 years ago
- Generates YARA rules to detect malware using API hashing☆17Updated 3 years ago
- Links to malware-related YARA rules☆14Updated last year
- ☆18Updated 3 years ago
- Merge all Yara rules from official Yara github repository in one .yar file☆28Updated 6 years ago
- Handy scripts to speed up malware analysis☆35Updated 11 months ago
- Imphash-like calculation on Golang binaries☆48Updated 2 years ago
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆52Updated 6 years ago
- Collection of YARA signatures from individual research☆41Updated 9 months ago
- VSCode extension for the YARA pattern matching language☆60Updated 8 months ago