PimmyTrousers

PimmyTrousers's Stars

• NationalSecurityAgency/ghidra

  Ghidra is a software reverse engineering (SRE) framework

  Language:Java52.9k1k5.1k6k

• qilingframework/qiling

  A True Instrumentable Binary Emulation Framework

  Language:Python5.2k136545747

• InQuest/awesome-yara

  A curated list of awesome YARA rules, tools, and people.

  3.6k17615497

• alexandreborges/malwoverview

  Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest, VxExchange and IPInfo, and it is also able to scan Android devices against VT.

  Language:Python3.1k11835455

• ioncodes/idacode

  An integration for IDA and VS Code which connects both to easily execute and debug IDAPython scripts.

  Language:Python737202777

• OALabs/BlobRunner

  Quickly debug shellcode extracted during malware analysis

  Language:C570141183

• c3rb3ru5d3d53c/binlex

  A Binary Genetic Traits Lexer Framework

  Language:Rust452166549

• godaddy/procfilter

  A YARA-integrated process denial framework for Windows

  Language:C++396571671

• misterch0c/what_is_this_c2

  For all these times you're asking yourself "what is this panel again?"

  25215253

• OALabs/findyara-ida

  IDA python plugin to scan binary with Yara rules

  Language:Python17112734

• AirbusCyber/grap

  grap: define and match graph patterns within binaries

  Language:Python17019113

• CheckPointSW/Cuckoo-AWS

  Extension to Cuckoo Sandbox open source projects, adds support to AWS cloud functionalities and enables running emulation on auto-scaling infrastructure

  Language:JavaScript136202730

• mak/mlib

  Your bag of handy codes for malware researchers

  Language:Python12115022

• RomaniukVadim/hack_scripts

  Usefull scripts

  Language:C++8011168

• PimmyTrousers/malpedia_cli

  Commandline utility to interact with the Malpedia service

  Language:Go21304

• PimmyTrousers/pastescraper

  Utility to scrape pastebin's incoming feed for known malware techniques

  Language:Go20202

• scrapbird/sinkholed

  A sinkhole for collecting and analysing malicious traffic

  Language:Go17302

• PeterDrake/drakepedia

  Topics and question bank for Peter Drake's computer science courses

  12205

• vertoforce/docker-sof-elk

  A dockerized version of the sof-elk project

  Language:Shell11303

• vertoforce/go-ioc

  IOC (Indicator of compromise) library to find, fang/defang, etc IOCs from a string or reader

  Language:Go8225

• PimmyTrousers/Packer-Research

  Notes and source code regarding packers

  Language:C6301

• vertoforce/gourlhaus

  URLhaus wrapper for go

  Language:Go4201

• vertoforce/streamregex

  Scan io.Reader and get matching data from a regex rule. Basically Find() for a reader

  Language:Go4203

• vertoforce/go-malwarebazaar

  Go library to interact with malwarebazaar

  Language:Go3202

• vertoforce/proxier

  Auto finds proxies and makes requests through them for web crawling.

  Language:Go3201

• vertoforce/genericenricher

  Read/enrich data from any server type (ELK, FTP, SQL, etc)

  Language:Go2200

• DS-KoolAid/slackbot_iocs

  Language:Python1200

• vertoforce/multiregex

  Library to manage sets of regex rules to check against data and streams

  Language:Go120

• vertoforce/serverpatdown

  Given a set of servers (or server sources) this package searches the data on the servers against a set of regex rules

  Language:Go120

• vertoforce/simplebrowser

  Simple interface to get html of a page after javscript runs

  Language:Go120