Yara PythonThe Python interface for YARA
Stars: ✭ 368 (-47.28%)
Judge-Jury-and-ExecutableA file system forensics analysis scanner and threat hunting tool. Scans file systems at the MFT and OS level and stores data in SQL, SQLite or CSV. Threats and data can be probed harnessing the power and syntax of SQL.
Stars: ✭ 66 (-90.54%)
YaraSyntaxYARA package for Sublime Text
Stars: ✭ 15 (-97.85%)
slopShellthe only php webshell you need.
Stars: ✭ 208 (-70.2%)
MultiscannerModular file scanning/analysis framework
Stars: ✭ 494 (-29.23%)
yaramanagerSimple yara rule manager
Stars: ✭ 60 (-91.4%)
RulesRepository of yara rules
Stars: ✭ 2,842 (+307.16%)
StoqAn open source framework for enterprise level automated analysis.
Stars: ✭ 352 (-49.57%)
Yara RulesA collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.
Stars: ✭ 206 (-70.49%)
PystingerBypass firewall for traffic forwarding using webshell 一款使用webshell进行流量转发的出网工具
Stars: ✭ 590 (-15.47%)
Go YaraGo bindings for YARA
Stars: ✭ 198 (-71.63%)
python-icap-yaraAn ICAP Server with yara scanner for URL and content.
Stars: ✭ 50 (-92.84%)
HamburglarHamburglar -- collect useful information from urls, directories, and files
Stars: ✭ 321 (-54.01%)
LokiLoki - Simple IOC and Incident Response Scanner
Stars: ✭ 2,217 (+217.62%)
oneshellcracka very very fast brute force webshell password tool
Stars: ✭ 42 (-93.98%)
ThreathuntingTools for hunting for threats.
Stars: ✭ 153 (-78.08%)
PeframePEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.
Stars: ✭ 472 (-32.38%)
Walkoff AppsWALKOFF-enabled applications. #nsacyber
Stars: ✭ 125 (-82.09%)
yara-rustRust bindings for VirusTotal/Yara
Stars: ✭ 35 (-94.99%)
Analyzer🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more
Stars: ✭ 108 (-84.53%)
Yara RulesRepository of YARA rules made by McAfee ATR Team
Stars: ✭ 283 (-59.46%)
vim-syntax-yaraA Vim syntax-highlighting file for YARA rules
Stars: ✭ 26 (-96.28%)
HyaraYara rule making tool (IDA Pro & Binary Ninja & Cutter Plugin)
Stars: ✭ 142 (-79.66%)
Lw YaraYara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies
Stars: ✭ 78 (-88.83%)
Webshell Sample收集自网络各处的 webshell 样本,用于测试 webshell 扫描器检测率。
Stars: ✭ 647 (-7.31%)
MascA Web Malware Scanner
Stars: ✭ 74 (-89.4%)
webshellsphp - asp - aspx
Stars: ✭ 19 (-97.28%)
BalbuzardBalbuzard is a package of malware analysis tools in python to extract patterns of interest from suspicious files (IP addresses, domain names, known file headers, interesting strings, etc). It can also crack malware obfuscation such as XOR, ROL, etc by bruteforcing and checking for those patterns.
Stars: ✭ 70 (-89.97%)
NovahotA webshell framework for penetration testers.
Stars: ✭ 284 (-59.31%)
yara-validatorValidates yara rules and tries to repair the broken ones.
Stars: ✭ 37 (-94.7%)
PecliCLI tool to analyze PE files
Stars: ✭ 46 (-93.41%)
SharpyshellSharPyShell - tiny and obfuscated ASP.NET webshell for C# web applications
Stars: ✭ 402 (-42.41%)
RpotReal-time Packet Observation Tool
Stars: ✭ 38 (-94.56%)
detectionDetection in the form of Yara, Snort and ClamAV signatures.
Stars: ✭ 70 (-89.97%)
Malware IocIndicators of Compromises (IOC) of our various investigations
Stars: ✭ 955 (+36.82%)
MqueryYARA malware query accelerator (web frontend)
Stars: ✭ 264 (-62.18%)
IocsIoC's, PCRE's, YARA's etc
Stars: ✭ 15 (-97.85%)
NginxExecuteThe NginxExecute module executes the shell command through GET POST and HEAD to display the result.
Stars: ✭ 47 (-93.27%)
Holmes TotemInvestigation Planner for fast running analysis with predictable execution time. For example, static analysis.
Stars: ✭ 25 (-96.42%)
Ghidra scriptsScripts for the Ghidra software reverse engineering suite.
Stars: ✭ 732 (+4.87%)
yaraMalice Yara Plugin
Stars: ✭ 27 (-96.13%)
FindwebshellfindWebshell是一款基于python开发的webshell检测工具。
Stars: ✭ 246 (-64.76%)
kubefilebrowserkubernetes container filebrowser and webshell
Stars: ✭ 23 (-96.7%)
SksSecurity Knowledge Structure(安全知识汇总)
Stars: ✭ 205 (-70.63%)
yara-parserTools for parsing rulesets using the exact grammar as YARA. Written in Go.
Stars: ✭ 69 (-90.11%)
Php BackdoorsA collection of PHP backdoors. For educational or testing purposes only.
Stars: ✭ 2,034 (+191.4%)
StrelkaReal-time, container-based file scanning at enterprise scale
Stars: ✭ 387 (-44.56%)
ImHex-PatternsHex patterns, include patterns and magic files for the use with the ImHex Hex Editor
Stars: ✭ 192 (-72.49%)
Spug开源运维平台:面向中小型企业设计的轻量级无Agent的自动化运维平台,整合了主机管理、主机批量执行、主机在线终端、文件在线上传下载、应用发布部署、在线任务计划、配置中心、监控、报警等一系列功能。
Stars: ✭ 6,810 (+875.64%)
Cheetaha very fast brute force webshell password tool
Stars: ✭ 509 (-27.08%)
NanoNano is a family of PHP web shells which are code golfed for stealth.
Stars: ✭ 386 (-44.7%)
MeltingPotA tool to cluster similar executables (PEs, DEXs, and etc), extract common signature, and generate Yara patterns for malware detection.
Stars: ✭ 23 (-96.7%)
threat-intelSignatures and IoCs from public Volexity blog posts.
Stars: ✭ 130 (-81.38%)