vmware-samples / tau-research
The project will serve as a central repository for VMware Threat Analysis Unit (TAU) to share threat intelligence with the security community, such as threat indicators of compromises (IoCs) and the corresponding scripts/tools TAU developed to extract the IoCs. The IoCs are typically used/discussed in TAU's published research papers such as repo…
☆16Updated last year
Alternatives and similar repositories for tau-research:
Users that are interested in tau-research are comparing it to the libraries listed below
- ☆19Updated 9 months ago
- ☆22Updated last year
- Method of finding interesting domains using keywords + JARMs☆13Updated 2 years ago
- Malware and PCAP☆11Updated last year
- Malware Analysis tools☆25Updated 4 months ago
- shared samples from #dailyphish and/or #apt tweets☆37Updated 3 weeks ago
- ☆18Updated 10 months ago
- Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!☆82Updated last year
- An Adaptive Misuse Detection System☆34Updated 2 months ago
- Modular malware analysis artifact collection and correlation framework☆53Updated 9 months ago
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆62Updated 2 years ago
- Repository of Yara rules created by the Stratosphere team☆26Updated 3 years ago
- Repository for archiving Cobalt Strike configuration☆29Updated this week
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated last year
- Searching .evtx logs for remote connections☆24Updated last year
- ☆51Updated last month
- CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"☆46Updated 2 years ago
- CIS Benchmark testing of Windows SIEM configuration☆44Updated last year
- Detecting Cobalt Strike Team Servers on targets through traffic telemetry.☆20Updated 5 months ago
- An extension of the sigma standard to include security metrics.☆15Updated last year
- Yet Another Memory Analyzer for malware detection☆24Updated last year
- The code in this repository which function is to extract the shellcode from the maldoc.☆10Updated last year
- ☆34Updated 2 years ago
- A project created with an aim to emulate and test exfiltration of data over different network protocols.☆31Updated last year
- Search for c2 servers based on netlas☆39Updated last year
- Proof-of-Concept to evade auditd by writing /proc/PID/mem☆20Updated last year
- bootloaders.io is a curated list of known malicious bootloaders for various operating systems. The project aims to assist security profes…☆49Updated last year
- ☆28Updated 2 months ago
- the Open Source and Pure C++ Packer for eXecutables☆18Updated last year
- ☆57Updated 10 months ago