Intezer Labs
Intezer detects threats by identifying any reused code or techniques, helping your team streamline the majority of their workload.
Pinned Repositories
analyze-cli
analyze-community-ghidra-plugin
Ghidra plugin for https://analyze.intezer.com
analyze-python-sdk
Basic SDK for Intezer Analyze API 2.0
docker-ida
Run IDA Pro disassembler in Docker containers for automating, scaling and distributing the use of IDAPython scripts.
GithubDownloader
Find and download files from multiple Github repositories
linux-explorer
Easy-to-use live forensics toolbox for Linux endpoints
Malware-Reverse-Engineering-for-Beginners
This repository contains relevant samples and data related to "Malware Reverse Engineering for Beginners" articles.
MemoryPatchDetector
Detects code differentials between executables in disk and the corresponding processes/modules in memory
MoP
MoP - "Master of Puppets" - Advanced malware tracking framework
yara-rules
Intezer Labs's Repositories
intezer/linux-explorer
Easy-to-use live forensics toolbox for Linux endpoints
intezer/MoP
MoP - "Master of Puppets" - Advanced malware tracking framework
intezer/analyze-community-ghidra-plugin
Ghidra plugin for https://analyze.intezer.com
intezer/analyze-python-sdk
Basic SDK for Intezer Analyze API 2.0
intezer/analyze-scripts
intezer/analyze-cli
intezer/community-intellignce
Here we gather IOCs that are related to campaigns initiated by APTs and Cybercrime groups.
intezer/intezer-volatility-plugin
Intezer plugin for Volatility 3 to conduct memory dump analysis.
intezer/CAPEv2
Malware Configuration And Payload Extraction
intezer/CassandraAccessControl
We’re releasing an open-source tool you can use now, which we developed as a homemade Just-In-Time database access control tool for our sensitive database. This tool syncs with our directory service, slack, SIEM, and finally, our Apache Cassandra database.
intezer/r2analyze
intezer/EDRConnectDeployment
Deployment For Intezer's EDR Connect
intezer/demisto-content
Demisto is now Cortex XSOAR. Automate and orchestrate your Security Operations with Cortex XSOAR's ever-growing Content Repository. Pull Requests are always welcome and highly appreciated!
intezer/microsoft-sentinel-integration
intezer/anomali-integration
intezer/archive-unshare
The low-level linux containers creation library for rust
intezer/capa-rules
Standard collection of rules for capa: the tool for enumerating the capabilities of programs
intezer/capa-testfiles
Data to test capa's code and rules.
intezer/community
Community modules for CAPE Sandbox
intezer/contentsecuritypolicy
This small Flask app can help you monitor CSP reports from your web app
intezer/cti-python-stix2
OASIS TC Open Repository: Python APIs for STIX 2
intezer/dnfile-testfiles
Test data for dnfile
intezer/dramatiq
A fast and reliable distributed task processing library for Python 3.
intezer/fapt
Faux' apt clone
intezer/pyinstxtractor-go
PyInstaller Extractor developed in Golang.
intezer/python3-saml
intezer/quart-openapi
Module for Quart to add Flask-RESTPlus like functionality
intezer/sklearn-json
A safe, transparent way to share and deploy scikit-learn models.
intezer/splunk-soar-connector-intezer
Intezer connector for Splunk SOAR enables security teams to automate the analysis, detection, and response of threats by integrating Intezer's technology into their Splunk workflows.
intezer/unshare
The low-level linux containers creation library for rust