MANDIANT

dncil Public
The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.

Python 49 Apache-2.0 5 2 1 Updated Apr 25, 2022
capa Public
The FLARE team's open-source tool to identify capabilities in executable files.

Python 2,160 Apache-2.0 306 101 (3 issues need help) 8 Updated Apr 25, 2022
flare-floss Public
FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.

Python 2,131 Apache-2.0 366 39 4 Updated Apr 25, 2022
thiri-notebook Public
The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat hunting rules.

Python 93 Apache-2.0 9 0 1 Updated Apr 25, 2022
yara Public
The pattern matching swiss knife

C 1 BSD-3-Clause 1,172 0 0 Updated Apr 22, 2022
VM-Packages Public

PowerShell 7 Apache-2.0 9 21 3 Updated Apr 21, 2022
flare-floss-testfiles Public
Resources for testing FLOSS by the FLARE team.

C 3 11 0 0 Updated Apr 20, 2022
Mandiant-Azure-AD-Investigator Public

PowerShell 459 Apache-2.0 77 3 1 Updated Apr 20, 2022
capa-rules Public
Standard collection of rules for capa: the tool for enumerating the capabilities of programs

Python 309 Apache-2.0 104 90 (1 issue needs help) 2 Updated Apr 14, 2022
Vulnerability-Disclosures Public

C++ 113 41 0 0 Updated Apr 12, 2022

Pinned