Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indicat…
CLI utility and Python module for analyzing log files and other data.
🐍 High-performance, multi-threaded YARA & IOC scanner
基于Memprocfs和Volatility的可视化内存取证工具
灵取证是一款功能强大且专业的安卓设备数据取证工具,专门为执法部门、司法机构和安全调查人员设计开发。本工具采用先进的取证技术,确保数据提取过程的完整性和准确性。本工具的开发和使用严格遵循相关法律法规框架,确保所有数据提取操作都在合法授权范围内进行。通过专业的数据处理流程,为执法调查…
LummaC2 extracted binaries by reversing & LummaC2 Stealer Analysis
macOS (& ios) Artifact Parsing Tool
Macaron is an extensible supply-chain security analysis framework from Oracle Labs that supports a wide range of build systems and CI/CD ser…
Scripts to process macOS forensic artifacts
machofile is a module to parse Mach-O binary files
A cross platform parser for Apple UnifiedLogs!
Forensic Artifact Collection Tool for macOS
Dynamic unpacker based on PE-sieve
#supply #chain #attack #detection
A Malware Scarecrow for Windows 10/11 with a user-friendly touch.
Debian packaging of Linux Malware Detect (https://github.com/rfxn/linux-malware-detect)
Maldump makes it easy to extract quarantined files of multiple AVs from a live system or a mounted disk image.
Malhunt is an automated malware hunting tool that analyzes memory dumps using Volatility3, applying YARA rules, code injection scanning, and…
A Python RESTful API framework for online malware analysis and threat intelligence services.
This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
Various snippets created during malware analysis
Materials for Windows Malware Analysis training (volume 1)
Hands-on projects on Static and Dynamic malware analysis with real-world tools.
Some of my Malware Analysis writeups