Grow your team on GitHub
GitHub is home to over 28 million developers working together. Join them to grow your own development teams, manage permissions, and collaborate on projects.Sign up
Clusters and elements to attach to MISP events or attributes (like threat actors)
A cross-platform CLI tool which enables analyzing files with Intezer Analyze
The pattern matching swiss knife
A fast and reliable distributed task processing library for Python 3.
pure python ssdeep
Easy-to-use live forensics toolbox for Linux endpoints
pefile is a Python module to read and work with PE (Portable Executable) files
Library to read and edit files in the following formats: Executable and Linking Format (ELF), Portable Executable (PE), MachO and OAT (Android Runtime)
SSDEEP hash lib in Golang
psutil for golang
Run IDA Pro disassembler in Docker containers for automating, scaling and distributing the use of IDAPython scripts.
Find and download files from multiple Github repositories
An example for implementation of ssdeep similarity search optimized with elasticsearch
ssdeep based clustering tool
A docker image where python installed with datastax's cassandra driver
Python logging handler for Logstash.
Detects code differentials between executables in disk and the corresponding processes/modules in memory
a Python library to communicate with an instance of Phil Harvey's excellent ExifTool command-line application.
Virus Total Public/Private/Intel API
IDAPython Made Easy
Finds dynamic DNS (like no-ip.org) domains from a given list of domains