Greg Copenhaver's repositories
phishing-frenzy
Ruby on Rails Phishing Framework
klara
Kaspersky's GReAT KLara
tools
Tools to interact with APTnotes reporting/index.
verify-sigs
Automatically exported from code.google.com/p/verify-sigs
veles
Binary data analysis and visualization tool
mailoney
An SMTP Honeypot
awesome-firmware-security
Awesome Firmware Security & Other Helpful Documents
Invoke-DOSfuscation
Cmd.exe Command Obfuscation Generator & Detection Test Harness
Invoke-CradleCrafter
PowerShell Remote Download Cradle Generator & Obfuscator
DKMC
DKMC - Dont kill my cat - Malicious payload evasion tool
Invoke-Obfuscation
PowerShell Obfuscator
PyIATRebuild
Automatically rebuild Import Address Table for dumped PE file. With python bindings!
rvmi-rekall
Rekall Forensics and Incident Response Framework with rVMI extensions
rvmi
rVMI - A New Paradigm For Full System Analysis
rvmi-kvm
Linux-KVM with rVMI extensions
LNKUp
Generates malicious LNK file payloads for data exfiltration
rvmi-qemu
QEMU with rVMI extensions
Out-FINcodedCommand
POC Highlighting Obfuscation Techniques used by FIN threat actors based on cmd.exe's replace functionality and cmd.exe/powershell.exe's stdin command invocation capabilities
ssdc
ssdeep based clustering tool
Malware
Course materials for Malware Analysis by RPISEC
pycrits
Python interface to the CRITs API
clamav
Go bindings for the ClamAV antivirus library (http://clamav.net)
pylibemu
A Libemu Cython wrapper
pafish
Pafish is a demonstration tool that employs several techniques to detect sandboxes and analysis environments in the same way as malware families do.
GetNETGUIDs
Extract GUIDs from .NET assemblies
Malfunction
Malware Analysis Tool using Function Level Fuzzy Hashing