Pinned Repositories
100daysofYARA2024
Rules shared by the community from 100 Days of YARA 2024
Absolutely-Positively-NOT-Hacking-Back-with-Pcap
Streaming Unexpected Network Byte Sequences with High Probability of Blue Screening or Otherwise Crashing Attacker Command-and-Control Nodes
Cerebro
Scripts and lists to help generate YARA friendly string mutations
ConventionEngine
ConventionEngine - A Yara Rulepack for PDB Path Hunting
Reversing-the-Reversing-of-the-TriStation-Protocol
"Reversing the Reversing of the TriStation Protocol" presented at SEC-T 0x0B in 2018
RonnieColemanYARAParser
An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.
threat-research
Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
TriStation-Wireshark-Dissector
Basic Wireshark LUA dissector for TriStation Protocol
stvemillertime's Repositories
stvemillertime/TriStation-Wireshark-Dissector
Basic Wireshark LUA dissector for TriStation Protocol
stvemillertime/CustomBase64
Custom base64 with option to pass specific key
stvemillertime/pcshare
stvemillertime/tbostrings
Dump printable ASCII/UNICODE strings from a given file in a single pass.
stvemillertime/yara_downloader
Bash script to download yara rules