3c7

TI, RE, DFIR stuff. Everything you find on this profile is the reason why I'm not a developer.

Pinned Repositories

age-encrypted-notebook
Age encrypted notes saved in a bolt DB
Language:Go20 1 00
aptmap
A map displaying threat actors from the misp-galaxy
Language:TypeScript31 8 86
bazaar
Python based CLI for MalwareBazaar
Language:Python36 3 35
certwatcher
Experimental certificate livestream using CaliDog/certstream-python and some rules to filter the feed
Language:Python5 3 04
common-osint-model
Converting data from services like Censys and Shodan to a common data model
Language:Python47 8 69
infrastructure-tracking-schema
Language:Python24 2 02
larva
Larva, the commandline client for TheHive: https://github.com/CERT-BDF/TheHive
Language:Python3 4 00
TheHive-book
3 2 00
vt2m
VirusTotal Query to MISP Objects
Language:Python8 2 50
yaramanager
Simple yara rule manager
Language:Python64 2 59

3c7's Repositories

3c7/yaramanager
Simple yara rule manager
Language:Python64 2 59
3c7/common-osint-model
Converting data from services like Censys and Shodan to a common data model
Language:Python47 8 69
3c7/bazaar
Python based CLI for MalwareBazaar
Language:Python36 3 35
3c7/aptmap
A map displaying threat actors from the misp-galaxy
Language:TypeScript31 8 86
3c7/infrastructure-tracking-schema
Language:Python24 2 02
3c7/age-encrypted-notebook
Age encrypted notes saved in a bolt DB
Language:Go20 1 00
3c7/vt2m
VirusTotal Query to MISP Objects
Language:Python8 2 50
3c7/python-imqfody
Python module that wraps intelmq fody api
Language:Python2 3 0
3c7/hashdb-cli
Query the open analysis hashdb https://hashdb.openanalysis.net via CLI
Language:Python1 1 0
3c7/MISP
MISP (core software) - Open Source Threat Intelligence Platform (formely known as Malware Information Sharing Platform)
Language:PHP1 2 0
3c7/flare-floss
FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
Language:Python0 0
3c7/gym
Go Yara Manager
1 0
3c7/hashdb
Assortment of hashing algorithms used in malware
Language:Python0 0
3c7/HHHash
HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.
Language:Python0 0
3c7/homebrew-tap
My own homebrew tap for testing purposes
Language:Ruby1 0
3c7/Log4Pot
Language:Python0 0
3c7/log4shell-detector
Detector for Log4Shell exploitation attempts
Language:Python0 0
3c7/misp-docker
MISP Docker (XME edition)
Language:Shell0 0
3c7/misp-galaxy
Clusters and elements to attach to MISP events or attributes (like threat actors)
Language:Python2 0
3c7/misp-objects
Definition, description and relationship types of MISP objects
Language:Python1 0
3c7/pocketbase
Open Source realtime backend in 1 file
Language:Go0 0
3c7/signature-base
Signature base for my scanner tools
Language:YARA0 0
3c7/vscode-yara
VSCode extension for the YARA pattern matching language
Language:TypeScript0 0
3c7/vscode-yara-abandoned
Work in progress update to the YARA extension for Visual Studio Code (formerly textmate-yara)
Language:Python1 0
3c7/yara-rules
Some shared yara rules
Language:YARA1 0
3c7/yaramod
Parsing of YARA rules into AST and building new rulesets in C++.
Language:C++0 01
3c7/yari
YARI is an interactive debugger for YARA Language.
Language:Rust0 0
3c7/yari-macos-arm
Temporary fork of yari in order to build macos arm releases.
Language:Rust1 0
3c7/yls
YARA Language Server
Language:Python0 0
3c7/yls-macos-arm
Temporary fork of yls in order to build macos arm releases.
Language:Python1 0