-
I could see the benefit in having Thug's YARA rules (or other repository) integrated into Honeyproxy and mark matches in the webinterface.
This would speed up detection when working with malware anal…
-
### Project to be claimed
`pyscopg2`: https://pypi.org/project/pyscopg2
### Your PyPI username
NA
### Reasons for the request
This is a project by Yandex, that name-squats a typo of the psycopg2 …
-
[QUANTUMSTRAND](https://github.com/mandiant/flare-floss/tree/quantumstrand/floss/qs) is an experiment that augments traditional strings.exe output with context to aid in malware analysis and reverse e…
mr-tz updated
8 months ago
-
@apkunpacker has proposed adding rules for detecting anti-cheat systems and anti-frida techniques. I'm generally in favor of supporting this in apkid since it falls in line with the general purpose of…
-
Hi!
Are there any plans to implement plain [sigma](https://github.com/Neo23x0/sigma) support for log scanning?
Would be a great feature to have the ability to scan log files with plain sigma rul…
-
The number of sketchy repos (The first 13 in the Nov 1 newsletter are illicit…
-
### Checklist
- [X] I have used the search function to see if someone else has already submitted the same feature request.
#645 and #682 could be duplicates, but are not the same request exactly
…
-
It's useful to have a common language around malware behaviors: https://github.com/MBCProject/mbc-markdown
We should also export this via JSON
-
**DNS resolution false positives.**
If I understood correctly, if one declares a list of DNS names, Falco will resolve them to IP addresses, to be able to track attempts to reach them. Which …
sl805 updated
2 months ago
-
## Prerequisites
* [x] Put an X between the brackets on this line if you have done all of the following:
* Checked that your rule idea isn't already filed: [search](https://github.com/fireeye/…