DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted from malware includes items such as addresses, passwords, filenames, and mutex names.
created at May 6, 2015, 3:11 p.m.
Automatically exported from code.google.com/p/jsunpack-n
created at April 1, 2015, 11:51 p.m.
Plasma is an interactive disassembler for x86/ARM/MIPS. It can generates indented pseudo-code with colored syntax.
created at March 9, 2015, 9:16 p.m.
ThreatTracker is a Python script designed to monitor and generate alerts on given sets of indicators of compromise (IOCs) indexed by a set of Google Custom Search Engines.
created at March 9, 2015, 7:19 a.m.
A set of Maltego transforms for VirusTotal Public API v2.0. This set has the added functionality of caching queries on a daily basis to speed up resolutions.
created at March 9, 2015, 6:52 a.m.
A Python RESTful API framework for online malware analysis and threat intelligence services.
created at Feb. 27, 2015, 10:43 p.m.
Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc.
created at Feb. 27, 2015, 1:28 a.m.
Pure Python parser for classic Windows Event Log files (.evt)
created at Jan. 24, 2015, 4:07 p.m.
Visualize network topologies and collect graph statistics based on pcap files
created at Jan. 21, 2015, 10:57 p.m.