There are 2 repositories under fireeye topic.
Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.
To stop the all seeing eye of Sauron and make your MacBook operate as it should be.
Python API bindings for FireEye Products
SpyCore - Windows Malicious FIle Scanner (Distributes)
EmailScanner is an integration application in python that uses `exchangelib` to process mail items in Microsoft exchange.
Publicly available threat intelligence reports
Extracts the Timeline of a Redline parsed sqlite database so it can be used e.g. in an ELK stack.
Tracking the Solarwinds Hack.
Assemblyline 4 Obfuscated string solver
Parses the Redline CSV output in a csv that is importable by timesketch