zbetcheckin / PDF_analysis
Several PDF analysis reassembled with additional tips and tools
☆317Updated last year
Related projects: ⓘ
- ☆258Updated this week
- 16,432 Free Yara rules created by☆378Updated 5 years ago
- For all these times you're asking yourself "what is this panel again?"☆251Updated last year
- YARA malware query accelerator (web frontend)☆407Updated this week
- ☆237Updated this week
- An open source script to perform malware static analysis on Portable Executable☆309Updated last year
- Pattern Extractor for Obfuscated Code☆295Updated 2 years ago
- FCL (Fileless Command Lines) - Known command lines of fileless malicious executions☆463Updated 3 years ago
- Tool to help analyze PDF files☆175Updated 10 years ago
- Vba2Graph - Generate call graphs from VBA code, for easier analysis of malicious documents.☆272Updated 2 years ago
- An AFF4 C++ implementation.☆187Updated last year
- Regipy is an os independent python library for parsing offline registry hives☆240Updated 3 weeks ago
- A VBA parser and emulation engine to analyze malicious macros.☆1,044Updated 2 months ago
- Awesome VirusTotal Intelligence Search Queries☆325Updated last year
- FAME Automates Malware Evaluation☆845Updated 2 weeks ago
- EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.☆180Updated 4 years ago
- Scripts to analyze stuff☆141Updated last week
- Collaborative malware analysis framework☆373Updated 5 years ago
- Allows you to quickly query a Windows machine for RAM artifacts☆218Updated 4 years ago
- VolatilityBot – An automated memory analyzer for malware samples and memory dumps☆263Updated 3 years ago
- A VBA parser and emulation engine to analyze malicious macros.☆90Updated this week
- snake - a malware storage zoo☆217Updated last year
- Set of Yara rules for finding files using magics headers☆134Updated 4 years ago
- Malware Configuration And Payload Extraction☆743Updated last year
- repository of tools & resources of the MMD team☆131Updated 2 years ago
- The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…☆332Updated 2 years ago
- Balbuzard is a package of malware analysis tools in python to extract patterns of interest from suspicious files (IP addresses, domain na…☆129Updated 4 years ago
- Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which …☆444Updated last year
- Online hash checker for Virustotal and other services☆808Updated 4 months ago
- A modern Python-3-based alternative to RegRipper☆184Updated 11 months ago