Lite version of PDF X-RAY that uses no backend
updated at Nov. 18, 2022, 11:52 p.m.
Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to find badness.
updated at Sept. 28, 2023, 10:22 a.m.
Malware/IOC ingestion and processing engine
updated at Sept. 28, 2023, 10:49 a.m.
A tool designed for consistent and safe capture of off network web resources.
updated at Dec. 4, 2023, 6:09 p.m.
Randomly changes Win32/64 PE Files for 'safer' uploading to malware and sandbox sites.
updated at Dec. 6, 2023, 7:03 a.m.
ThreatTracker is a Python script designed to monitor and generate alerts on given sets of indicators of compromise (IOCs) indexed by a set of Google Custom Search Engines.
updated at Dec. 14, 2023, 3:25 p.m.
Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc.
updated at Jan. 3, 2024, 2:12 p.m.
ROPMEMU is a framework to analyze, dissect and decompile complex code-reuse attacks.
updated at Jan. 16, 2024, 4:21 p.m.
A framework for receiving and redistributing abuse feeds
updated at Jan. 23, 2024, 11:37 a.m.
Threat Intelligence Quotient Test - Dataviz and Statistical Analysis of TI feeds
updated at Jan. 30, 2024, 4:14 a.m.
DEPRECATED - USE v3 (bearded-avenger)
updated at Feb. 4, 2024, 7:58 a.m.
inVtero.net: A high speed (Gbps) Forensics, Memory integrity & assurance. Includes offensive & defensive memory capabilities. Find/Extract processes, hypervisors (including nested) in memory dumps using microarchitechture independent Virtual Machiene Introspection techniques
updated at Feb. 5, 2024, 5:10 p.m.