├── cs-mitm.py
├── custom-decoder-1.py
├── decrypt-icedid.py
├── deobfuscate-repetitions.py
├── excel_brute_force_formula_fill.py
├── excel_json_formula_mid.py
├── gootloader-chroma-js-parser.py
├── pdf-activemime.yara
└── qwerty-effect.py


/cs-mitm.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/DidierStevens/AdHoc/HEAD/cs-mitm.py


--------------------------------------------------------------------------------
/custom-decoder-1.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/DidierStevens/AdHoc/HEAD/custom-decoder-1.py


--------------------------------------------------------------------------------
/decrypt-icedid.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/DidierStevens/AdHoc/HEAD/decrypt-icedid.py


--------------------------------------------------------------------------------
/deobfuscate-repetitions.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/DidierStevens/AdHoc/HEAD/deobfuscate-repetitions.py


--------------------------------------------------------------------------------
/excel_brute_force_formula_fill.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/DidierStevens/AdHoc/HEAD/excel_brute_force_formula_fill.py


--------------------------------------------------------------------------------
/excel_json_formula_mid.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/DidierStevens/AdHoc/HEAD/excel_json_formula_mid.py


--------------------------------------------------------------------------------
/gootloader-chroma-js-parser.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/DidierStevens/AdHoc/HEAD/gootloader-chroma-js-parser.py


--------------------------------------------------------------------------------
/pdf-activemime.yara:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/DidierStevens/AdHoc/HEAD/pdf-activemime.yara


--------------------------------------------------------------------------------
/qwerty-effect.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/DidierStevens/AdHoc/HEAD/qwerty-effect.py


--------------------------------------------------------------------------------