tccontre / KnowledgeBase
Collection of tips, tools, arsenal and techniques I've learned during RE and other CyberSecStuff
☆54Updated 2 months ago
Alternatives and similar repositories for KnowledgeBase:
Users that are interested in KnowledgeBase are comparing it to the libraries listed below
- Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…☆44Updated 2 years ago
- Scripts, Yara rules and other files developed during malware investigations☆25Updated 2 years ago
- ☆22Updated 10 months ago
- Generate YARA rules for OOXML documents.☆38Updated last year
- A powershell parser for https://github.com/ufrisk/MemProcFS☆44Updated 3 years ago
- Scripts to aid analysis of files obfuscated with ScatterBee.☆20Updated 2 years ago
- Converts exported results of CAPA tool from .json format to another formats supporting by different tools.☆22Updated 3 years ago
- Rekall Memory Forensic Framework☆32Updated 5 years ago
- Malware Configuration Extraction Modules☆49Updated last year
- Invoke-DetectItEasy is a wrapper for excelent tool called Detect-It-Easy. This PS module is very useful for Threat Hunting and Forensics.☆25Updated 3 years ago
- A multi-threaded malware sample downloader based upon given MD-5/SHA-1/SHA-256 hashes, using multiple malware databases.☆30Updated 2 years ago
- ☆73Updated last year
- Symantec EDR Internals☆26Updated 3 years ago
- Radare2 Metadata Extraction to Elasticsearch☆22Updated 10 months ago
- A small utility to deal with malware embedded hashes.☆49Updated last year
- ☆34Updated 2 years ago
- Modular malware analysis artifact collection and correlation framework☆53Updated 11 months ago
- Royal Road RTF Weaponizer object decoder☆24Updated 6 months ago
- Capa analysis importer for Ghidra.☆61Updated 4 years ago
- ☆14Updated 2 years ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆59Updated 2 years ago
- ☆27Updated 4 months ago
- ☆39Updated last year
- ☆27Updated 3 years ago
- A collection of shellcode hashes☆17Updated 6 years ago
- Generates YARA rules to detect malware using API hashing☆17Updated 4 years ago
- Small visualizator for PE files☆69Updated last year
- ☆33Updated 3 years ago
- SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool☆52Updated 3 months ago
- Static Decryptor for IcedID Malware☆18Updated 2 years ago