321 Open source projects that are alternatives of or similar to Cirtkit

A script to assist in processing forensic RAM captures for malware triage

Python tool and library to help analyze files during malware triage and analysis.

Malcom - Malware Communications Analyzer

VirusTotal Wanna Be - Now with 100% more Hipster

Yara rules written by me, for free use.

Malware Analysis, Threat Intelligence and Reverse Engineering: LABS

Livro: Fundamentos de Engenharia Reversa

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree view.

A port of Kaitai to the Hiew hex editor

Windows Events Attack Samples

Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android

Smart OSINT collection of common IOC types

A collection of scripts to initialize a windows VM to run all the malwares!

Drebin - NDSS 2014 Re-implementation

🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more

Your Everyday Threat Intelligence

Fast Static File Analysis Framework

Maltego CaseFile entities for information security investigations, malware analysis and incident response

The FLARE team's open-source tool to identify capabilities in executable files.

Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.

A repository of sysmon configuration modules

CIRCL system forensic tools or a jumble of tools to support forensic

📇 Digital Forensics Artifact Repository (forensicanalysis edition)

A curated list of awesome forensic analysis tools and resources

Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies

A collection of malware samples caught by several honeypots i manage

Event Trace Log file parser in pure Python

Mach-O & Universal Binary Parser

Collection of scripts for different malware analysis tasks

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

Automagically extract forensic timeline from volatile memory dump

A modular Python application to pull intelligence about malicious files

A simple command-line script to interact with the virustotal-api

oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.

PS / Bash / Python / Other scripts For FUN!

ThreatHunt is a PowerShell repository that allows you to train your threat hunting skills.

CLI tool to analyze PE files

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

Analyzing Rig Exploit Kit

A binary analysis framework

《macOS软件安全与逆向分析》勘误

Norimaci is a simple and lightweight malware analysis sandbox for macOS

Malware Data Science Reading Diary / Notes

Submits multiple domains to VirusTotal API

GDA is a new fast and powerful decompiler in C++(working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory extraction, dat…

BeSafe is robust threat analyzer which help to protect your desktop environment and know what's happening around you

Signature base for my scanner tools

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Emofishes is a collection of proof of concepts that help improve, bypass or detect virtualized execution environments (focusing on the ones setup for malware analysis).

[Suspended] FakeNet-NG - Next Generation Dynamic Network Analysis Tool

A curated list of awesome YARA rules, tools, and people.

Python API Client for Cortex

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

Builds malware analysis Windows VMs so that you don't have to.

yarGen is a generator for YARA rules

Bringing you the best of the worst files on the Internet.

Indicator Extractor

Invoke-LiveResponse