Zeek-Formatted Threat Intelligence Feeds

A modular Karton Framework service that unpacks common packers like UPX and others using the Qiling Framework.

Dynamic unpacker based on PE-sieve

Aims to identify sleeping beacons

MEGR-APT: A Memory-Efficient APT Hunting System Based on Attack Representation Learning

Configuration Extractors for Malware

Scalable RL solution for advanced reasoning of language models

Loki - Simple IOC and YARA Scanner

🚀🤖 Crawl4AI: Open-source LLM Friendly Web Crawler & Scraper. Don't be shy, join here: https://discord.gg/jP8KfhDhyN

🍰 Desktop utility to download images/videos/music/text from various websites, and more.

Extracting IoC data from eMail

An OSINT tool tailored for comprehensive collection, analysis, and interpretation of cyber threat intelligence from Telegram channels and groups.

FLARE Team's Binary Navigator

A tool that automates regex generation for the x86 and x86-64 instruction sets

Generator of regular expressions

Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extracting the malware's final stage configuration.

DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted from malware includes items such as addresses, passwords, fi…

🦆 Malduck is your ducky companion in malware analysis journeys

Malware Configuration And Payload Extraction

Elastic Malware Benchmark for Empowering Researchers

Repository of yara rules and malware config extractors

Repository to provide files related to our blog articles.

Elastic Security detection content for Endpoint

Detection in the form of Yara, Snort and ClamAV signatures.

shared samples from #dailyphish and/or #apt tweets

Tool to bypass 403/40X response codes.

Decrypted content of eqgrp-auction-file.tar.xz

IP反查域名

For educational purposes only, exhaustive samples of 450+ classic/modern trojan builders including screenshots.