SentineLabs/Cl0p-ELF-Decryptor

Stars
15
Rank 1,371,379 (Top 28 %)
Language
Python
Created almost 2 years ago
Updated almost 2 years ago

SentineLabs/Cl0p-ELF-Decryptor

SentineLabs

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Python3 script which decrypts files encrypted by flawed Cl0p ELF variant.

AlphaGolang

IDApython Scripts for Analyzing Golang Binaries

SentinelLabs_RevCore_Tools

The Windows Malware Analysis Reversing Core Tools

XProtect-Malware-Families

Mapping XProtect's obfuscated malware family names to common industry names.

aevt_decompile

This is a work-in-progress command line tool for reversing run-only AppleScripts. It will help parse the output of applescript-disassembler.py into something more human-readable.

S1QL-Queries

macos-ttps-yara

A ruleset to find potentially malicious code in macOS malware samples

Memloader

Memory Loader Open Source Project by Sentinel-Labs.

PowerTrick

This is a repository for the public blog with Labs indicators of compromise and code

log4j_response

TrickBot-Anchor

This is a repository for the public blog with Labs indicators of compromise.

aeon

Repository containing Aeon Timeline templates and example projects

SolarWinds_Countermeasures

This tool is designed to identify processes, services, and drivers that SUNBURST attempts to identify on the victim's machine.

TrickBot-Deobfuscator

Code and data related to TrickBot-Deobfuscator blog

Gamaredon-APT

This is a collection of relevant indicators of compromise for the main blog.

Yara

Public SentinelLabs Yara Rules

Shadowpad

Technical Indicators for SentinelLabs ShadowPad research

IOCs

A Collection of IOC's

aoqin_dragon

meteor-express

Hashes and Yara hunting rules for MeteorExpress Wiper

Crypt1_IOCs

Massive unpacking of CryptOne samples