Signature BaseSignature base for my scanner tools
Stars: ✭ 1,212 (+9223.08%)
MalcomMalcom - Malware Communications Analyzer
Stars: ✭ 988 (+7500%)
Analyzer🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more
Stars: ✭ 108 (+730.77%)
Python IocextractDefanged Indicator of Compromise (IOC) Extractor.
Stars: ✭ 300 (+2207.69%)
ThreatingestorExtract and aggregate threat intelligence.
Stars: ✭ 439 (+3276.92%)
LokiLoki - Simple IOC and Incident Response Scanner
Stars: ✭ 2,217 (+16953.85%)
static file analysisAnalysis of file (doc, pdf, exe, ...) in deep (emmbedded file(s)) with clamscan and yara rules
Stars: ✭ 34 (+161.54%)
factual-rules-generatorFactual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
Stars: ✭ 62 (+376.92%)
Freki🐺 Malware analysis platform
Stars: ✭ 285 (+2092.31%)
freki🐺 Malware analysis platform
Stars: ✭ 327 (+2415.38%)
threat-intelSignatures and IoCs from public Volexity blog posts.
Stars: ✭ 130 (+900%)
yara-validatorValidates yara rules and tries to repair the broken ones.
Stars: ✭ 37 (+184.62%)
MispMISP (core software) - Open Source Threat Intelligence and Sharing Platform
Stars: ✭ 3,485 (+26707.69%)
Icewater16,432 Free Yara rules created by
Stars: ✭ 324 (+2392.31%)
MultiscannerModular file scanning/analysis framework
Stars: ✭ 494 (+3700%)
PecliCLI tool to analyze PE files
Stars: ✭ 46 (+253.85%)
YargenyarGen is a generator for YARA rules
Stars: ✭ 795 (+6015.38%)
MatireMalware Analysis, Threat Intelligence and Reverse Engineering: LABS
Stars: ✭ 55 (+323.08%)
Awesome YaraA curated list of awesome YARA rules, tools, and people.
Stars: ✭ 1,394 (+10623.08%)
pyc2bytecodeA Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)
Stars: ✭ 70 (+438.46%)
Docker MispAutomated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
Stars: ✭ 148 (+1038.46%)
OsweepDon't Just Search OSINT. Sweep It.
Stars: ✭ 225 (+1630.77%)
YobiYara Based Detection Engine for web browsers
Stars: ✭ 39 (+200%)
Pepper An open source script to perform malware static analysis on Portable Executable
Stars: ✭ 250 (+1823.08%)
rtfsigA tool to help malware analysts signature unique parts of RTF documents
Stars: ✭ 28 (+115.38%)
calamityA script to assist in processing forensic RAM captures for malware triage
Stars: ✭ 24 (+84.62%)
Misp WarninglistsWarning lists to inform users of MISP about potential false-positives or other information in indicators
Stars: ✭ 184 (+1315.38%)
CCXDiggerThe CyberCX Digger project is designed to help Australian organisations determine if they have been impacted by certain high profile cyber security incidents. Digger provides threat hunting functionality packaged in a simple-to-use tool, allowing users to detect certain attacker activities; all for free.
Stars: ✭ 45 (+246.15%)
StoqAn open source framework for enterprise level automated analysis.
Stars: ✭ 352 (+2607.69%)
MalwareHashDBMalware hashes for open source projects.
Stars: ✭ 31 (+138.46%)
ApkidAndroid Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android
Stars: ✭ 999 (+7584.62%)
BesafeBeSafe is robust threat analyzer which help to protect your desktop environment and know what's happening around you
Stars: ✭ 21 (+61.54%)
Malware FeedBringing you the best of the worst files on the Internet.
Stars: ✭ 69 (+430.77%)
yarasploitYaraSploit is a collection of Yara rules generated from Metasploit framework shellcodes.
Stars: ✭ 31 (+138.46%)
IntelowlIntel Owl: analyze files, domains, IPs in multiple ways from a single API at scale
Stars: ✭ 2,114 (+16161.54%)
Awesome CsirtAwesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.
Stars: ✭ 132 (+915.38%)
Threat HuntingPersonal compilation of APT malware from whitepaper releases, documents and own research
Stars: ✭ 219 (+1584.62%)
Judge-Jury-and-ExecutableA file system forensics analysis scanner and threat hunting tool. Scans file systems at the MFT and OS level and stores data in SQL, SQLite or CSV. Threats and data can be probed harnessing the power and syntax of SQL.
Stars: ✭ 66 (+407.69%)
MaliceVirusTotal Wanna Be - Now with 100% more Hipster
Stars: ✭ 1,253 (+9538.46%)
pyarascannerA simple many-rules to many-files YARA scanner for incident response or malware zoos.
Stars: ✭ 23 (+76.92%)
MthcAll-in-one bundle of MISP, TheHive and Cortex
Stars: ✭ 134 (+930.77%)
HyaraYara rule making tool (IDA Pro & Binary Ninja & Cutter Plugin)
Stars: ✭ 142 (+992.31%)
CirtkitTools for the Computer Incident Response Team 💻
Stars: ✭ 117 (+800%)
PEiDYet another implementation of PEiD with yara
Stars: ✭ 12 (-7.69%)
yara-forensicsSet of Yara rules for finding files using magics headers
Stars: ✭ 115 (+784.62%)
yaraMalice Yara Plugin
Stars: ✭ 27 (+107.69%)
python-icap-yaraAn ICAP Server with yara scanner for URL and content.
Stars: ✭ 50 (+284.62%)
binlexA Binary Genetic Traits Lexer Framework
Stars: ✭ 303 (+2230.77%)
MindMaps#ThreatHunting #DFIR #Malware #Detection Mind Maps
Stars: ✭ 224 (+1623.08%)
pftriagePython tool and library to help analyze files during malware triage and analysis.
Stars: ✭ 77 (+492.31%)
Lw YaraYara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies
Stars: ✭ 78 (+500%)
malware-persistenceCollection of malware persistence and hunting information. Be a persistent persistence hunter!
Stars: ✭ 109 (+738.46%)
ThreatKBKnowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
Stars: ✭ 68 (+423.08%)
rstthreatsAggregated Indicators of Compromise collected and cross-verified from multiple open and community-supported sources, enriched and ranked using our intelligence platform for you. Threat Intelligence, Threat feed, Open source feed.
Stars: ✭ 17 (+30.77%)
OSINT-BrazucaRepositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.
Stars: ✭ 508 (+3807.69%)