mandiant

There are 0 repository under mandiant topic.

mandiant / ThreatPursuit-VM
Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.
cyber threat threatintelligence threathunting intelligence intelligence-analysis data-science analytics malware virtual-machine mandiant fireeye
Language:PowerShell 1202
jaegeral / RedLineTimelineDB_extractor
Extracts the Timeline of a Redline parsed sqlite database so it can be used e.g. in an ELK stack.
cyber redline fireeye mandiant csv elk timeline sqlite tool
Language:Python 4
CybercentreCanada / assemblyline-service-floss
Assemblyline 4 Obfuscated string solver
assemblyline malware-analysis fireeye floss strings obfuscated mandiant
Language:Python 2
msimon96 / MA-HASHCHECK
PowerShell script for interacting with Mandiant Advantage API to retrieve hash values associated with specified Malware Families. The script provides a menu-driven interface for various malware analysis operations and exports results to Excel.
malware-analysis mandiant
Language:PowerShell 0
jaegeral / redline2timesketch
Parses the Redline CSV output in a csv that is importable by timesketch
timesketch redline security tool helper python cyber blockchain fireeye mandiant
Language:Python

mandiant / ThreatPursuit-VM