Pinned Repositories
awesome-yara
A curated list of awesome YARA rules, tools, and people.
iocextract
Defanged Indicator of Compromise (IOC) Extractor.
malware-samples
A collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net
microsoft-office-macro-clustering
omnibus
The OSINT Omnibus (beta release)
python-inquestlabs
A Pythonic interface and command line tool for interacting with the InQuest Labs API.
sandboxapi
Minimal, consistent Python API for building integrations with malware sandboxes.
ThreatIngestor
Extract and aggregate threat intelligence.
ThreatKB
Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
yara-rules
A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.
InQuest's Repositories
InQuest/awesome-yara
A curated list of awesome YARA rules, tools, and people.
InQuest/malware-samples
A collection of malware samples and relevant dissection information, most probably referenced from http://blog.inquest.net
InQuest/ThreatIngestor
Extract and aggregate threat intelligence.
InQuest/iocextract
Defanged Indicator of Compromise (IOC) Extractor.
InQuest/yara-rules
A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.
InQuest/omnibus
The OSINT Omnibus (beta release)
InQuest/sandboxapi
Minimal, consistent Python API for building integrations with malware sandboxes.
InQuest/ThreatKB
Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
InQuest/yara-rules-vt
Collection of YARA rules designed for usage through VirusTotal.com.
InQuest/python-inquestlabs
A Pythonic interface and command line tool for interacting with the InQuest Labs API.
InQuest/microsoft-office-macro-clustering
InQuest/PackMyPayload
A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX
InQuest/iqui-ngx
Angular CDK based, Bootstrap styled components library
InQuest/malware_lure
Collection of Malware Lures
InQuest/python-threatkb
Python library and command-line tool for InQuest ThreatKB. (pre-release)
InQuest/bddisasm
bddisasm is a fast, lightweight, x86/x64 instruction decoder. The project also features a fast, basic, x86/x64 instruction emulator, designed specifically to detect shellcode-like behavior.
InQuest/bincapz
enumerate binary capabilities, including malicious behaviors
InQuest/MalwareSourceCode
Collection of malware source code for a variety of platforms in an array of different programming languages.
InQuest/pigasus
100Gbps Intrusion Detection and Prevention System
InQuest/ransomware_notes
An archive of ransomware notes past and present
InQuest/RFIQ-Card
Recorded Future InQuest Labs Integration
InQuest/yaradbg-backend
InQuest/iq-cli
InQuest Platform v3 CLI and Python Library
InQuest/binlex
A Binary Genetic Traits Lexer Framework
InQuest/chepy
Chepy is a python lib/cli equivalent of the awesome CyberChef tool.
InQuest/cyberchef-recipes
A list of cyber-chef recipes and curated links
InQuest/inquest-labs-community-rules
This repository houses a collection of community submitted YARA rules that run atop of labs.inquest.net
InQuest/malwoverview
Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT.
InQuest/restringer
A Javascript Deobfuscator
InQuest/yaradbg-frontend