pdfxray_lite by 9b

Lite version of PDF X-RAY that uses no backend

updated at Nov. 18, 2022, 11:52 p.m.

7 +0

34 +0

9 +0

broyara by hempnall

integrating bro into yara

updated at Nov. 22, 2022, 7:44 a.m.

5 +0

31 +0

5 +0

muninn by ytisf

A short and small memory forensics helper.

updated at March 28, 2023, 1:44 a.m.

11 +0

50 +0

9 +0

TotalRecall by sketchymoose

Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to find badness.

updated at Sept. 28, 2023, 10:22 a.m.

14 +0

49 +0

9 +0

MalPipe by silascutler

Malware/IOC ingestion and processing engine

updated at Sept. 28, 2023, 10:49 a.m.

11 +0

102 +0

24 +0

panda by moyix

Deprecated repo for PANDA 1.0 – see PANDA 2.0 repository

updated at Oct. 23, 2023, 3:47 p.m.

10 +0

102 +0

42 +0

Malfunction by Dynetics

Malware Analysis Tool using Function Level Fuzzy Hashing

updated at Nov. 11, 2023, 5:40 a.m.

26 +0

190 +0

35 +0

malpdfobj by 9b

Builds json representation of PDF malware sample

updated at Nov. 11, 2023, 12:59 p.m.

8 +0

51 +0

16 +0

SMRT by pidydx

Sublime Malware Research Tool

updated at Nov. 15, 2023, 9:41 a.m.

8 +0

64 +0

15 +0

malwarehouse by sroberts

A warehouse for your malware

updated at Dec. 4, 2023, 6:08 p.m.

22 +0

131 +0

43 +0

cuckoo-modified-api by keithjjones

A Python library to interface with a cuckoo-modified instance

updated at Dec. 4, 2023, 6:09 p.m.

6 +0

18 +0

7 +0

boomerang by EmersonElectricCo

A tool designed for consistent and safe capture of off network web resources.

updated at Dec. 4, 2023, 6:09 p.m.

12 +0

34 +0

6 +0

PyIOCe by pidydx

Python OpenIOC Editor

updated at Dec. 6, 2023, 12:12 a.m.

3 +0

16 +0

7 +0

recomposer by secretsquirrel

Randomly changes Win32/64 PE Files for 'safer' uploading to malware and sandbox sites.

updated at Dec. 6, 2023, 7:03 a.m.

18 +0

130 +0

42 +0

ThreatTracker by michael-yip

ThreatTracker is a Python script designed to monitor and generate alerts on given sets of indicators of compromise (IOCs) indexed by a set of Google Custom Search Engines.

updated at Dec. 14, 2023, 3:25 p.m.

7 +0

62 +0

13 +0

visualize_logs by keithjjones

A Python library and command line tools to provide interactive log visualization.

updated at Dec. 26, 2023, 12:22 p.m.

15 +0

134 +0

36 +0

codebro by hugsy

Web based code browser using clang to provide basic code analysis.

updated at Jan. 2, 2024, 12:06 a.m.

6 +0

43 +0

6 +0

threataggregator by jpsenior

Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc.

updated at Jan. 3, 2024, 2:12 p.m.

12 +0

78 +0

27 +0

iocs by mandiant

FireEye Publicly Shared Indicators of Compromise (IOCs)

updated at Jan. 12, 2024, 5:57 p.m.

160 +0

460 +0

116 +0

ROPMEMU by Cisco-Talos

ROPMEMU is a framework to analyze, dissect and decompile complex code-reuse attacks.

updated at Jan. 16, 2024, 4:21 p.m.

31 +0

280 +0

50 +0