See what the GitHub community is most excited about today.
A static analyzer for PE executables.
Repository of yara rules
Program for determining types of files for Windows, Linux and MacOS.
Signature base for my scanner tools
Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android
Indicators of Compromises (IOC) of our various investigations
Please no pull requests for this repository. Thanks!
Scripts for the Ghidra software reverse engineering suite.
PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.
Hamburglar -- collect useful information from urls, directories, and files
YARA Rules I come across on the internet
Citizen Lab Malware Reports
WALKOFF-enabled applications. #nsacyber
Mass static malware analysis tool
Repository of YARA rules made by McAfee ATR Team
A Web Malware Scanner
Set of Yara rules for finding files using magics headers
Various Yara signatures (possibly to be included in a release later).
Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies
CLI tool to analyze PE files
Investigation Planner for fast running analysis with predictable execution time. For example, static analysis.
Malice Yara Plugin
IoC's, PCRE's, YARA's etc