Simple tool that you can use for collect relevant data of Portable Executable (PE) files that can be used for Intel during a line of research related with malware.
-
Updated
Jul 13, 2017 - Python
Simple tool that you can use for collect relevant data of Portable Executable (PE) files that can be used for Intel during a line of research related with malware.
Download pcap files from http://www.malware-traffic-analysis.net/
Advanced Sysmon configuration, Installer & Auto Updater with high-quality event tracing
This repository contains the Dockerfile of the project ManaTI https://github.com/stratosphereips/Manati
Map and visualize SSH logins from sensors.
A Haskell EDSL for conducting threat analysis using Attack Trees
Script auto generate rules with IOC
Intelligent threat hunter and phishing servers
Find phishing kits which use your brand/organization's files and image.
Automatic Threat Detection
The goal of Engaged Threat is to provide honeypot researchers the ability to hold the attention of an attacker or to induce the attacker to participate in some sort of increased activity.
Generate a report containing IOCs gathered from VirusTotal and Hybrid-Analysis.
Threat detector for Windows 10
Quick SOC L1 ticket structure
Programmatically find relationships between a list of strings using Google.
A toolkit for Security Researchers
A set of transformations to for indicators-pulses
MISP decaying models
Identify vulnerabilities in running containers, images, hosts and repositories
Add a description, image, and links to the threat-analysis topic page so that developers can more easily learn about it.
To associate your repository with the threat-analysis topic, visit your repo's landing page and select "manage topics."