zk7 / hershelplus

Related projects: ⓘ

• PaloAltoNetworks / pyjarm
  pyJARM is a library for doing JARM fingerprinting using python
  ☆50Updated 3 years ago
• adava / CnCHunter
  This project fully automates the process of analyzing and exploiting IoT malware to find live CnC servers.
  ☆38Updated last month
• stanford-esrg / gps
  GPS is a scanning platform that learns and predicts the location of IPv4 services across all 65K ports.
  ☆60Updated last year
• threatrack / cti_report_collection
  Repository collecting and automagically processing public threat intelligence reports.
  ☆18Updated 4 years ago
• elastic / siglearn
  Code for BH21 talk: "Generating YARA Rules by Classifying Malicious Byte Sequences"
  ☆16Updated 2 years ago
• stratosphereips / yara-rules
  Repository of Yara rules created by the Stratosphere team
  ☆26Updated 3 years ago
• tklab-tud / BSF
  Botnet Simulation Framework
  ☆75Updated 4 years ago
• Kart1keya / Hachi
  This tool maps a file's behavior on MITRE ATT&CK matrix.
  ☆56Updated 4 years ago
• COSSAS / dgad
  DGA Detective - Hunt domains generated by Domain Generation Algorithms to identify malware traffic
  ☆33Updated last month
• cyber-research / APTAttribution
  Code for Benchmarking two ML Approaches performing Authorship Attribution
  ☆34Updated 2 years ago
• JavierYuste / AvaddonDecryptor
  A decryptor for systems infected by Avaddon ransomware.
  ☆23Updated 3 years ago
• conexioninversa / WOPR
  Globally distributed honeypots and HoneyNets IOCs and file reversing
  ☆16Updated 4 months ago
• jsecurity101 / Detecting-Process-Injection-Techniques
  This is a repository that is meant to hold detections for various process injection techniques.
  ☆32Updated 4 years ago
• 0xN3utr0n / Kanis
  Advanced threat detection solution for Linux.
  ☆35Updated 3 years ago
• zom3y3 / ssdc
  ssdeep cluster analysis for malware files
  ☆29Updated 4 years ago
• trisulnsm / ja3prints
  JA3 TLS Fingerprint database
  ☆72Updated 4 years ago
• AragornTseng / Mem2Img
  Mem2Img: Memory-Resident Malware Detection via Convolution Neural Network
  ☆25Updated 3 years ago
• ojroques / tls-malware-detection
  The report of a supervised classifier to detect malware in TLS traffic
  ☆18Updated 4 years ago
• killvxk / avclassplusplus
  AVCLASS++: Yet Another Massive Malware Labeling Tool
  ☆12Updated 4 years ago
• mannirulz / BotDAD
  Anomaly detection based on DNS traffic analysis
  ☆51Updated 4 years ago
• mitre / sandcat
  A CALDERA plugin
  ☆63Updated 7 months ago
• alrawi / badthings-tools
  This repository contains dynamic and static tools for IoT malware analysis
  ☆19Updated 2 years ago
• sagarwani / APT32_OceanLotus_ThreatGroup
  All in one - Malware + Analysis by Cylance
  ☆10Updated 5 years ago
• CiscoCXSecurity / presentations
  Presentations from the CX Security Labs team
  ☆32Updated 6 months ago
• StefanKelm / yara-rules
  Links to malware-related YARA rules
  ☆14Updated last year
• AlgoSecure / iotmap
  Research project on heterogeneous IoT protocols modelling
  ☆54Updated 2 years ago
• jeFF0Falltrades / IoCs
  A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo
  ☆30Updated 4 years ago
• 3c7 / aptmap
  A map displaying threat actors from the misp-galaxy
  ☆31Updated last year
• ail-project / ail-yara-rules
  A set of YARA rules for the AIL framework to detect leak or information disclosure
  ☆36Updated 2 months ago
• Vi45en / Pesidious
  ☆13Updated last year