CIRCL/factual-rules CIRCL/factual-rules

  • Stars
    star
    9
  • Rank 1,890,056 (Top 39 %)
  • Language YARA
  • License
    BSD 2-Clause "Sim...
  • Created about 3 years ago
  • Updated over 2 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
CIRCL/factual-rules
github

CIRCL

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Factual rules are YARA rules to find legitimate software on raw disk acquisition.

More Repositories

1

AIL-framework

AIL framework - Analysis Information Leak framework. Project moved to https://github.com/ail-project
Python
1,268
star
2

Circlean

USB key cleaner
Python
434
star
3

url-abuse

URL Abuse - A Versatile Software for URL review, analysis and black-list reporting
Python
136
star
4

bgp-ranking

BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN).
Python
101
star
5

potiron

Potiron - Normalize, Index and Visualize Network Capture
Python
80
star
6

cve-portal

Common Vulnerabilities and Exposures - Portal
Python
79
star
7

PyPDNS

Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.
Python
71
star
8

factual-rules-generator

Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
Python
71
star
9

compliance

Legal, procedural and policies document templates for operating an IRT
61
star
10

douglas-quaid

Open source software for image correlation, distance and analysis
Python
61
star
11

PyCIRCLean

Python library used by CIRCLean (the USB sanitizer) and others
Python
49
star
12

IP-ASN-history

IP-ASN-history is a server software to store efficiently the history of BGP announces and quickly lookup IP addresses origins
Python
46
star
13

pcapdj

pcapdj - dispatch pcap files
C
44
star
14

carl-hauser

Open Source testing framework for image correlation, distance and analysis
Python
43
star
15

forensic-tools

CIRCL system forensic tools or a jumble of tools to support forensic
Python
40
star
16

yara-validator

Validates yara rules and tries to repair the broken ones.
Python
38
star
17

traceroute-circl

Traceroute improved wrapper for CSIRT and CERT operators
36
star
18

urlquery_python_api

Python API for URL Query
Python
34
star
19

vt-tools

Tools for VirusTotal
Python
34
star
20

IMAP-Proxy

Modular IMAP proxy (including PyCIRCLeanMail and MISP forward modules)
Python
26
star
21

PyEUPI

Client API to query the Phishing Initiative service API
Python
21
star
22

email-abuse

Email Abuse - A Versatile Software for Email review, analysis and reporting
Python
18
star
23

bgpranking-redis-api

API to access the Redis database of a BGP Ranking instance.
Python
17
star
24

PyRichHeader

A Python parser for Rich Headers
Python
13
star
25

volatility-misp

Volatility plugin to interface with MISP
Python
10
star
26

pe32-cert-dump

Dump and parse embedded certificates from Windows binaries
Shell
10
star
27

PyCIRCLeanMail

Standalone CIRCLean/KittenGroomer code to sanitize emails.
Python
10
star
28

pbtc

Passive Bitcoin Project
Go
10
star
29

open-data-security

open-data-security description format is a simple JSON format to describe dataset released as open data by security researchers, security vendors or CSIRTs
9
star
30

hackathon

Website for hackathon.hack.lu - 0x04 virtual hackathon
CSS
7
star
31

lnf-tools

lnf-tools is a set of Perl, Python libraries and C code to analyze and process large set of Netflow records.
Python
7
star
32

misp-darwin

Improving human readability of MISP threat intelligence
6
star
33

PyACDC

Data clearing house API for the Advanced Cyber Defence Centre (ACDC).
Python
5
star
34

dma-frontend

Pre-pre-pre Beta DMA frontend
Less
5
star
35

hash-whitelist-lookup

Python
5
star
36

revoker

Revoke active sessions
Python
4
star
37

ODFCleaner

Python module to cleanup ODF files.
XSLT
4
star
38

pypretalx

Query Pretalx via the API.
Python
4
star
39

PasswordTest

Web application to test your password
PHP
4
star
40

libscif

libscif v3.6.1 (Intel Xeon Phi Coprocessor) for Ubuntu LTS 14.04 Trusty
C
3
star
41

circlean-pi-gen

Shell
3
star
42

mpss-micmgmt

mpss-micmgmt v3.6.1 (Intel Xeon Phi Coprocessor) for Ubuntu LTS 14.04 Trusty
HTML
3
star
43

ail-packer

Packer Scripts to generate AIL-framework VMs
Shell
3
star
44

elfinsight

Utility that collects and aggregates information on ELF files.
Python
2
star
45

orbit-agents

orbit-agents
2
star
46

mpss-daemon

mpss-daemon v3.6.1 (Intel Xeon Phi Coprocessor) for Ubuntu LTS 14.04 Trusty
C
1
star
47

pisax-website

pisax.org website
HTML
1
star
48

douglas-quaid-results

Results of Douglas-Quaid
Python
1
star
49

junk-ip-indexer

Experiments indexing with IP and related attributes
C++
1
star
50

douglas-quaid-tests

Tests files for douglas-quaid
1
star
51

TestCasesCIRClean

A bunch of files to test if CIRCLean works properly. Contains malicious documents.
1
star
52

miclib

miclib v3.6.1 (Intel Xeon Phi Coprocessor) for Ubuntu LTS 14.04 Trusty (extracted from mpss-micmgmt)
C++
1
star
53

mpss-modules

MPSS module v3.6.1 (Intel Xeon Phi Coprocessor), with patches for linux-3.19 on Ubuntu LTS 14.04 Trusty
C
1
star
54

miccheck

miccheck v3.6.1 (Intel Xeon Phi Coprocessor) for Ubuntu LTS 14.04 Trusty
Python
1
star
55

openpgp-keys-filterlists

OpenPGP keys filterlists maintained by CIRCL
1
star