FireEye

Repositories

capa

The FLARE team's open-source tool to identify capabilities in executable files.

reverse-engineering malware-analysis

Python Apache-2.0 66 720 27 1 Updated Jul 30, 2020

capa-rules

Standard collection of rules for capa: the tool for enumerating the capabilities of programs

Apache-2.0 7 65 24 0 Updated Jul 30, 2020

gocrack-ui

The User Interface for GoCrack

fireeye-flare

Vue MIT 33 55 0 5 Updated Jul 30, 2020

capa-testfiles

2 3 0 0 Updated Jul 29, 2020

flare-floss

FireEye Labs Obfuscated String Solver - Automatically extract obfuscated strings from malware.

strings malware deobfuscation fireeye-flare

Python Apache-2.0 275 1,581 47 2 Updated Jul 29, 2020

FIDL

A sane API for IDA Pro's decompiler. Useful for malware RE and vulnerability research

api research decompiler malware ida vulnerability reversing

Python MIT 35 243 1 0 Updated Jul 29, 2020

flare-emu

emulation malware-analysis fireeye-flare

Python Apache-2.0 54 385 1 0 Updated Jul 23, 2020

flare-vm

reverse-engineering malware-analysis fireeye-flare

PowerShell Apache-2.0 371 2,140 59 4 Updated Jul 23, 2020

HXTool

HXTool is an extended user interface for the FireEye HX Endpoint product. HXTool can be installed on a dedicated server or on your physical workstation. HXTool provides additional features and capabilities over the standard FireEye HX web user interface. HXTool uses the fully documented REST API that comes with the FireEye HX for communication w…

JavaScript 10 6 3 1 Updated Jul 20, 2020

jest-environment-serverless

Testing your Serverless projects with Jest the easy way!

JavaScript MIT 3 12 6 5 Updated Jul 16, 2020

mimosa-rpm-package

JavaScript 2 1 0 1 Updated Jul 15, 2020

Vulnerability-Disclosures

C++ 2 16 0 0 Updated Jul 15, 2020

flare-ida

IDA Pro utilities from FLARE team

reverse-engineering ida ida-pro ida-plugin idapython fireeye-flare

Python Apache-2.0 344 1,207 11 1 Updated Jul 9, 2020

flare-qdb

Command-line and Python debugger for instrumenting and modifying native software behavior on Windows and Linux.

fireeye-flare

Python Apache-2.0 33 136 7 0 Updated Jun 24, 2020

commando-vm

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@fireeye.com

windows penetration-testing red-teaming fireeye-flare

PowerShell Apache-2.0 797 3,639 20 0 Updated Jun 17, 2020

flare-fakenet-ng

FakeNet-NG - Next Generation Dynamic Network Analysis Tool

malware-analysis traffic-redirection fireeye-flare fakenet-ng

Python Apache-2.0 248 1,118 41 15 Updated Jun 15, 2020

fireeye-python

Python 4 16 0 0 Updated Jun 9, 2020

PwnAuth

Python Apache-2.0 56 229 2 2 Updated Jun 5, 2020

rvmi-rekall

Rekall Forensics and Incident Response Framework with rVMI extensions

Python GPL-2.0 11 22 0 4 Updated May 20, 2020

SilkETW

C# 74 337 6 1 Updated May 17, 2020

gocrack

GoCrack is a management frontend for password cracking tools written in Go

fireeye-flare

Go MIT 201 923 16 (2 issues need help) 1 Updated Apr 17, 2020

SSSDKCMExtractor

Python Apache-2.0 9 10 0 0 Updated Mar 31, 2020

ioc-scanner-CVE-2019-19781

Indicator of Compromise Scanner for CVE-2019-19781

Shell Apache-2.0 14 78 4 0 Updated Mar 25, 2020

Crescendo

Forked from SuprHackerSteve/Crescendo

Crescendo is a swift based, real time event viewer for macOS. It utilizes Apple's Endpoint Security Framework.

Swift 31 3 0 0 Updated Mar 10, 2020

ADFSDump

C# Apache-2.0 21 75 0 0 Updated Feb 22, 2020

DueDLLigence

C# 33 201 1 0 Updated Jan 31, 2020

SharPersist

C# 100 427 1 0 Updated Jan 5, 2020

stringsifter

A machine learning tool that ranks strings based on their relevance for malware analysis.

machine-learning strings reverse-engineering learning-to-rank malware-analysis fireeye-flare fireeye-data-science

Python Apache-2.0 59 393 5 0 Updated Dec 2, 2019

IDA_Pro_VoiceAttack_profile

Python MIT 5 16 0 0 Updated Nov 20, 2019

fireeye-bootswatch

CSS MIT 2 3 0 1 Updated Nov 4, 2019