Pinned Repositories
anyrun-api
ANY.RUN API Wrapper for PHP
dataset
nao dataset
ektotal
[BHUSA 2018 Arsenal] Integrated tool to analyze Drive-by Download attack
mal_getter
Tool for dropping malware from EK
ramnit_traffic_parser
Parsing Ramnit's traffic
RigEK
Analyzing Rig Exploit Kit
rr_decoder
Decode Royal Road RTF Weaponizer 8.t object
starc
Simple high-interactive client honeypot
tknk_scanner
Community-based integrated malware identification system
yara_rules
For malware research
nao_sec's Repositories
nao-sec/ektotal
[BHUSA 2018 Arsenal] Integrated tool to analyze Drive-by Download attack
nao-sec/tknk_scanner
Community-based integrated malware identification system
nao-sec/RigEK
Analyzing Rig Exploit Kit
nao-sec/mal_getter
Tool for dropping malware from EK
nao-sec/rr_decoder
Decode Royal Road RTF Weaponizer 8.t object
nao-sec/starc
Simple high-interactive client honeypot
nao-sec/anyrun-api
ANY.RUN API Wrapper for PHP
nao-sec/dataset
nao dataset
nao-sec/yara_rules
For malware research
nao-sec/materials
Past presentation materials
nao-sec/ramnit_traffic_parser
Parsing Ramnit's traffic
nao-sec/binary_decoder
nao-sec/rr_decoder.cs
C# implementation of rr_decoder
nao-sec/screnc.php
Microsoft Script Encoder / Decoder in PHP
nao-sec/ioc
misp format Malware IOCs
nao-sec/jsac2018
Drive-by Download Must Die - Japan Security Analyst Conference 2018
nao-sec/aoba
Automatic Tools for Observe and Analyze EK and Identify Malware (a.k.a nao_sec tools)
nao-sec/docker-misp
Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
nao-sec/misp-galaxy
Clusters and elements to attach to MISP events or attributes (like threat actors)
nao-sec/starc.php
StarC (PHP version)
nao-sec/starc2
Rewrite StarC in Python and Powershell