threathive's repositories
brieflz
Small fast Lempel-Ziv compression library
crl-monitor
CRL Monitor - X.509 Certificate Revocation List monitoring and X.509/Subject caching
cuckoo-droid
CuckooDroid - Automated Android Malware Analysis with Cuckoo Sandbox.
cuckoodroid-2.0
CuckooDroid - Automated Android Malware Analysis with Cuckoo Sandbox.
docs
Malice Documentation
droidmon
Dalvik Monitoring Framework for CuckooDroid
dumpmon
Information Dump Monitor
elastichoney
A Simple Elasticsearch Honeypot
engine
The Malice Engine
geoip
simple geoip api similar to ipinfo.io
hydra_resolver
An asynchronous hostname resolver powered by Twisted
ip-asn-lookup-server
ip-asn-lookup-server is a whois server which give historical view on the association between IP addresses and ASN number (relying on IP-ASN-history server)
jsdetox
A Javascript malware analysis tool
libzpy
library to decode/parse zeus-like configuration files
Limon
Limon is a sandbox developed as a research project written in python, which automatically collects, analyzes, and reports on the run time indicators of Linux malware. It allows one to inspect Linux malware before execution, during execution, and after execution (post-mortem analysis) by performing static, dynamic and memory analysis using open source tools
LokiPWS
Loki PWS - Control Panel New Version leaked
macaroni_server
A REST API server for yara event notifications. Mapping file hashes to yara signatures in Elasticsearch for easy hash lookup or finding hashes by search yara signature names.
mal_getter
Tool for dropping malware from EK
maldrolyzer
Simple framework to extract "actionable" data from Android malware (C&Cs, phone numbers etc.)
malice-av
Malice AntiVirus Plugins
maliceio
Malice.IO website
malwarecage
Malware repository component for samples & static configuration with REST API interface
MalwareClassifier
Malware Classifier From Network Captures
registry
Malice Plugin Registry
threat_note
DPS' Lightweight Investigation Notebook
VT-Hunter
Manage VT Alerts