elhoim

My own!

Pinned Repositories

ail-yara-rules
A set of YARA rules for the AIL framework to detect leak or information disclosure
Language:YARA0 1 00
AlienvaultLabs
Alienvault Labs Projects Random Stuff
Language:Python0 2 00
awesome-event-ids
Collection of Event ID ressources useful for Digital Forensics and Incident Response
0 0 00
awesome-malware-analysis
A curated list of awesome malware analysis tools and resources
0 2 00
backup-slack
A script for backing up your message history from Slack
Language:Python0 2 00
canari
Local and Remote Maltego Rapid Transform Development Framework
Language:Python0 2 00
gdata-client-java
Google gdata client in java
Language:Java1 2 00
malicious-domain-profiling
Automatically exported from code.google.com/p/malicious-domain-profiling
Language:Python3 1 00
mwcrawler
Python Malware Crawler for Zoos and Repositories
3 2 00
smart-codegen
smart-codegen project from google code
Language:Java1 2 00

elhoim's Repositories

elhoim/ail-yara-rules
A set of YARA rules for the AIL framework to detect leak or information disclosure
Language:YARA0 1 00
elhoim/awesome-event-ids
Collection of Event ID ressources useful for Digital Forensics and Incident Response
0 0 00
elhoim/backup-slack
A script for backing up your message history from Slack
Language:Python0 2 00
elhoim/censys-python
Python Library for Censys
Language:Python2 0
elhoim/crl-monitor
CRL Monitor - X.509 Certificate Revocation List monitoring and X.509/Subject caching
Language:Python2 0
elhoim/DailyIOC
IOC from articles, tweets for archives
Language:YARA0 0
elhoim/ExpertRules
This repository contains a set of rules samples that can be directly used with McAfee Endpoint Security, in the Exploit Prevention policy.
1 0
elhoim/gopassivedns
PassiveDNS in Go
Language:Go2 0
elhoim/Hello-Goodbye
Available for Chrome, Firefox and Safari and as a blocklist to integrate into existing blockers.
Language:JavaScript0 0
elhoim/InfraFinder
Finds shared attributes across multiple IP addresses by querying Censys
Language:Python0 0
elhoim/LOLBAS
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
Language:XSLT0 0
elhoim/malware-indicators
Citizen Lab Malware Reports
Language:YARA1 0
elhoim/MISP
MISP - Malware Information Sharing Platform & Threat Sharing
Language:PHP2 0
elhoim/misp-galaxy
Clusters and elements to attach to MISP events or attributes (like threat actors)
Language:Shell2 0
elhoim/MISP-maltego
Set of Maltego transforms to inferface with a MISP instance
Language:Python2 0
elhoim/misp-modules
Modules for expansion services, import and export in MISP
Language:Python1 0
elhoim/misp-taxonomies
Taxonomies used in MISP taxonomy system and can be used by other information sharing tool.
2 0
elhoim/misp-warninglists
Warning lists to inform users of MISP about potential false-positives or other information in indicators
Language:Python1 0
elhoim/misp-website
MISP website (jekyll-based)
Language:HTML1 0
elhoim/misp2bro
Python script that gets IOC from MISP and converts it into BRO intel files.
Language:Python2 0
elhoim/otterai-api
Unofficial Otter.ai Python API
Language:Python0 0
elhoim/pySigma
Python library to parse and convert Sigma rules into queries (and whatever else you could imagine)
Language:Python0 0
elhoim/pySigma-backend-splunk
pySigma Splunk backend
Language:Python0 0
elhoim/redis-py
Redis Python Client
Language:Python2 0
elhoim/sigma
Generic Signature Format for SIEM Systems
Language:Python0 0
elhoim/signature-base
Signature base for my scanner tools
Language:YARA1 0
elhoim/splunk_wineventcode_secanalysis
Windows Event Code Security Analysis app for Splunk.
Language:CSS0 0
elhoim/sysmon-modular
A repository of sysmon configuration modules
Language:PowerShell0 0
elhoim/viper
Binary analysis and management framework
Language:Python2 0
elhoim/yarix
Language:C1 0