search

InQuest / ThreatIngestor

Extract and aggregate threat intelligence.
https://inquest.readthedocs.io/projects/threatingestor/
GNU General Public License v2.0
821 stars 135 forks source link

Add support for additional deobfuscation techniques #3

Closed rshipp closed 6 years ago

rshipp commented 6 years ago

Continue to add and improve C2 deobfuscation to catch more cases. 

ftx://test.com/doc.doc
http__www.clowndoc.com/KNpgJS/
http__co-story.co.kr/j59x7Q6/
http__delassociates.com/vXWS9G/
http__www.bagnismeraldo.com/hsVI1/
http__mkholidays.co.uk/GDYt/
http:// peekquick .com /sdeu/cr.sedin/sdac/
rshipp commented 6 years ago

Done as part of #11