TotalRecall
Digital threat analyzer
An open source tool for analyzing digital artifacts to detect potential security threats
Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to find badness.
49 stars
14 watching
9 forks
Language: Python
last commit: over 7 years ago
Linked from 1 awesome list
rshipp/awesome-malware-analysisRelated projects:
| Repository | Description | Stars |
|---|---|---|
 tripwire/tardis | An intelligence platform for threat analysis and incident response | 123 |
 stratosphereips/manati | An open-source tool utilizing machine learning to assist threat analysts in identifying security problems. | 112 |
 mlsecproject/tiq-test | Analyzes threat intelligence feeds using statistical methods and data visualization. | 173 |
 crits/crits | An analytic tool for cyber threat analysis and malware correlation, providing a platform for researchers to conduct analyses and save results. | 894 |
 debasishm89/burpy | A tool that analyzes web application security by parsing Burp Suite logs and generating reports. | 120 |
 yevh/taac-ai | An AI-driven tool for analyzing service descriptions and identifying security threats. | 118 |
 thehive-project/cortex-analyzers | Develops and stores Cortex analyzers & responders for incident response and threat intelligence. | 437 |
| mlsecproject/combine | Tool to gather Threat Intelligence indicators from publicly available sources | 657 |
 svdwi/bluebox | Analyzes and enriches threat intelligence data from various sources to help detect malicious files, URLs, and domains. | 39 |
 sk4la/plast | A modular threat-hunting tool framework for detecting indicators of compromise in incident-response operations. | 17 |
 dissectmalware/officeforensictools | A Python-based collection of tools for gathering forensic information from Office documents | 26 |
 binarydefense/goatrider | Tool to compare IP addresses or hostnames to threat intelligence feeds and detect potential security threats. | 138 |
 michael-yip/threattracker | Monitors and alerts on IOCs from Google Custom Search Engines and Safe Browsing APIs. | 66 |
 ptr32void/ostrica | A framework to collect and visualize threat intelligence information from various sources in a flexible and plugin-based architecture. | 309 |
 idiom/pftriage | Tool to analyze files during malware analysis and triage by extracting properties and detecting malicious indicators. | 77 |