JPCERT Coordination Center

LogonTracer

Investigate malicious Windows logon by visualizing and analyzing Windows event log

EmoCheck

Emotet detection tool for Windows OS

MalConfScan

Volatility plugin for extracts configuration data of known malware

aa-tools

Artifact analysis tools by JPCERT/CC Analysis Center

SysmonSearch

Investigate suspicious activity by visualizing Sysmon's event log

phishurl-list

Phishing URL dataset from JPCERT/CC

YAMA

Yet Another Memory Analyzer for malware detection

MalConfScan-with-Cuckoo

Cuckoo Sandbox plugin for extracts configuration data of known malware

jpcert-yara

JPCERT/CC public YARA rules repository

MemoryForensic-on-Cloud

Memory Forensic System on Cloud

Windows-Symbol-Tables

Windows symbol tables for Volatility 3

impfuzzy

Fuzzy Hash calculated from import API of PE files

upx-mod

UPX - the Ultimate Packer for eXecutables

rust-binary-analysis-research-ja

Rustで作成されたバイナリのリバースエンジニアリング調査レポート

Lazarus-research

Lazarus analysis tools and research report

CobaltStrike-Config

Repository for archiving Cobalt Strike configuration

QuasarRAT-Analysis

QuasarRAT analysis tools and research report

Lucky-Visitor-Scam-IoC

Automatically update IoC for lucky visitor scam

SurfaceAnalysis-on-Cloud

Surface Analysis System on Cloud

AutoYara4FLIRT

etw-scan

ETW forensic tool for Volatility3 plugin

xml2evtx

Convert Event Log XML to EVTX file

cwe-1003-ja

CWE-1003 日本語訳

JPCERT-IR-Statistics

JPCERT/CC Incident handling statistics

HUILoader-research

HUI Loader analysis research

YAMAGoya

Yet Another Memory Analyzer for malware detection and Guarding Operations with YARA and SIGMA

GobRAT-Analysis

CaseStudy-CVSSv3

Document-of-vulnStudyExp07andVulsFes9

Overview-CVE-CWE-CVSS