wolfvan / YaraRETLinks
Carving tool based in Radare2 & Yara
☆16Updated 6 years ago
Alternatives and similar repositories for YaraRET
Users that are interested in YaraRET are comparing it to the libraries listed below
Sorting:
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 8 years ago
- THOR MITRE ATT&CK Framework Coverage☆24Updated 5 years ago
- The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent☆12Updated 8 years ago
- Virustotal Data to Timesketch☆17Updated 6 years ago
- Check IOC provided by a MISP instance on Suricata events☆17Updated 6 years ago
- Mass Triage Tools☆20Updated 4 months ago
- ☆24Updated 2 years ago
- Plugins to add funtionality to ProcDOT. http://www.procdot.com☆23Updated last year
- Cybersecurity Incidents Mind Maps☆33Updated 3 years ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Updated 5 years ago
- Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.☆25Updated 2 years ago
- Carving tool based in Radare2 & Yara☆16Updated 6 years ago
- Subscriptions to collect Windows Event Logs mapped to the MITRE ATT&CK model☆12Updated 4 years ago
- Links to malware-related YARA rules☆15Updated 2 years ago
- Repository for scripts and tips for "Yara Scan Service"☆20Updated 2 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Notebooks created to attack and secure Active Directory environments☆27Updated 5 years ago
- pollen - A command-line tool for interacting with TheHive☆35Updated 6 years ago
- Setting up a training environment for MISP☆12Updated 2 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Updated 5 years ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated 2 years ago
- An extendable tool to extract and aggregate IoCs from threat feeds☆33Updated last year
- ☆34Updated 4 years ago
- ☆12Updated 7 years ago
- ☆20Updated 5 years ago
- NTFS file system specimens☆13Updated last year
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆39Updated 2 years ago
- Repository of Information sharing on threats and indicators☆12Updated 5 years ago
- ☆32Updated 7 months ago