Sandboxed Execution Environment Sandboxed Execution Environment (SEE) is a framework for building test automation in secured Environments....
Malware Analysis
Project Aura: Security audits for packages The current trend in the development is to use a lot...
mkYARA Writing YARA rules based on executable code within malware can be a tedious task. An analyst...
Loki – Simple IOC Scanner Scanner for Simple Indicators of Compromise Detection is based on four detection...
Sigma Generic Signature Format for SIEM Systems What is Sigma? Sigma is a generic and open signature...
pcodedmp.py – A VBA p-code disassembler It is not widely known, but macros are written in VBA...
MalConfScan is a Volatility plugin extracts configuration data of known malware. Volatility is an open-source memory forensics framework for incident...
Malcolm is a powerful network traffic analysis tool suite designed with the following goals in mind: Easy to...
EKFiddle A framework based on the Fiddler web debugger to study Exploit Kits, malvertising and malicious traffic...
PHP malware scanner Traversing directories for files with php extensions and testing files against text or regexp...
What is Munin? Munin is an online hash checker utility that retrieves valuable information from various online...
pyattck A Python module to interact with the Mitre ATT&CK Framework pyattck has the following notable features...
Network Flight Simulator flightsim is a lightweight utility used to generate malicious network traffic and help security teams...
PEpper An open source tool to perform malware static analysis on Portable Executable. Feature extracted Suspicious entropy ratio...
AMIRA: Automated Malware Incident Response & Analysis AMIRA is a service for automatically running the analysis on...