├── .gitignore ├── ARDrone ├── __init__.py ├── api.yaml ├── libardrone │ ├── .gitignore │ ├── README.md │ ├── __init__.py │ ├── arnetwork.py │ ├── arvideo.py │ ├── demo.py │ ├── libardrone.py │ └── test_libardrone.py ├── main.py └── requirements.txt ├── AlienVault ├── __init__.py ├── api.yaml ├── app.py ├── requirements.txt └── signature-base │ ├── .gitignore │ ├── .travis.yml │ ├── LICENSE │ ├── README.md │ ├── build-rules.py │ ├── iocs │ ├── README.txt │ ├── otx-c2-iocs-ipv4.txt │ ├── otx-c2-iocs-ipv6.txt │ ├── otx-c2-iocs.txt │ ├── otx-filename-iocs.txt │ └── otx-hash-iocs.txt │ ├── makefile │ ├── misc │ └── file-type-signatures.txt │ ├── threatintel │ ├── LICENSE │ ├── get-misp-iocs.exe │ ├── get-misp-iocs.py │ ├── get-otx-iocs.exe │ └── get-otx-iocs.py │ ├── vendor │ └── yara │ │ └── airbnb_binaryalert.yar │ └── yara │ ├── apt_agent_btz.yar │ ├── apt_alienspy_rat.yar │ ├── apt_apt10.yar │ ├── apt_apt12_malware.yar │ ├── apt_apt17_mal_sep17.yar │ ├── apt_apt17_malware.yar │ ├── apt_apt19.yar │ ├── apt_apt28.yar │ ├── apt_apt29_grizzly_steppe.yar │ ├── apt_apt30_backspace.yar │ ├── apt_apt34.yar │ ├── apt_apt6_malware.yar │ ├── apt_backdoor_ssh_python.yar │ ├── apt_backspace.yar │ ├── apt_beepservice.yar │ ├── apt_between-hk-and-burma.yar │ ├── apt_blackenergy.yar │ ├── apt_blackenergy_installer.yar │ ├── apt_bluetermite_emdivi.yar │ ├── apt_bronze_butler.yar │ ├── apt_buckeye.yar │ ├── apt_carbon_paper_turla.yar │ ├── apt_casper.yar │ ├── apt_cheshirecat.yar │ ├── apt_cloudduke.yar │ ├── apt_cmstar.yar │ ├── apt_cn_pp_zerot.yar │ ├── apt_codoso.yar │ ├── apt_coreimpact_agent.yar │ ├── apt_crash_override.yar │ ├── apt_cve2015_5119.yar │ ├── apt_danti_svcmondr.yar │ ├── apt_darkcaracal.yar │ ├── apt_deeppanda.yar │ ├── apt_derusbi.yar │ ├── apt_dragonfly.yar │ ├── apt_dubnium.yar │ ├── apt_duqu2.yar │ ├── apt_emissary.yar │ ├── apt_eqgrp.yar │ ├── apt_eqgrp_apr17.yar │ ├── apt_eternalblue_non_wannacry.yar │ ├── apt_fakem_backdoor.yar │ ├── apt_fancybear_dnc.yar │ ├── apt_fidelis_phishing_plain_sight.yar │ ├── apt_fin7_backdoor.yar │ ├── apt_foudre.yar │ ├── apt_four_element_sword.yar │ ├── apt_freemilk.yar │ ├── apt_furtim.yar │ ├── apt_fvey_shadowbroker_dec16.yar │ ├── apt_fvey_shadowbroker_jan17.yar │ ├── apt_ghostdragon_gh0st_rat.yar │ ├── apt_glassRAT.yar │ ├── apt_golddragon.yar │ ├── apt_greenbug.yar │ ├── apt_grizzlybear_uscert.yar │ ├── apt_hackingteam_rules.yar │ ├── apt_ham_tofu_chches.yar │ ├── apt_hatman.yar │ ├── apt_hellsing_kaspersky.yar │ ├── apt_hidden_cobra.yar │ ├── apt_hiddencobra_bankshot.yar │ ├── apt_hizor_rat.yar │ ├── apt_hkdoor.yar │ ├── apt_indetectables_rat.yar │ ├── apt_industroyer.yar │ ├── apt_inocnation.yar │ ├── apt_irongate.yar │ ├── apt_irontiger.yar │ ├── apt_irontiger_trendmicro.yar │ ├── apt_ism_rat.yar │ ├── apt_kaspersky_duqu2.yar │ ├── apt_keyboys.yar │ ├── apt_keylogger_cn.yar │ ├── apt_khrat.yar │ ├── apt_korplug_fast.yar │ ├── apt_laudanum_webshells.yar │ ├── apt_lazarus_dec17.yar │ ├── apt_leviathan.yar │ ├── apt_lotusblossom_elise.yar │ ├── apt_magichound.yar │ ├── apt_microcin.yar │ ├── apt_middle_east_talosreport.yar │ ├── apt_miniasp.yar │ ├── apt_minidionis.yar │ ├── apt_mofang.yar │ ├── apt_molerats_jul17.yar │ ├── apt_monsoon.yar │ ├── apt_moonlightmaze.yar │ ├── apt_ms_platinum.yara │ ├── apt_naikon.yar │ ├── apt_nanocore_rat.yar │ ├── apt_netwire_rat.yar │ ├── apt_oilrig.yar │ ├── apt_oilrig_oct17.yar │ ├── apt_oilrig_rgdoor.yar │ ├── apt_olympic_destroyer.yar │ ├── apt_onhat_proxy.yar │ ├── apt_op_cleaver.yar │ ├── apt_op_cloudhopper.yar │ ├── apt_passcv.yar │ ├── apt_passthehashtoolkit.yar │ ├── apt_plugx.yar │ ├── apt_poisonivy.yar │ ├── apt_poisonivy_gen3.yar │ ├── apt_poseidon_group.yar │ ├── apt_poshspy.yar │ ├── apt_prikormka.yar │ ├── apt_project_m.yar │ ├── apt_project_sauron.yara │ ├── apt_project_sauron_extras.yar │ ├── apt_promethium_neodymium.yar │ ├── apt_putterpanda.yar │ ├── apt_quarkspwdump.yar │ ├── apt_quasar_rat.yar │ ├── apt_quasar_vermin.yar │ ├── apt_reaver_sunorcal.yar │ ├── apt_rehashed_rat.yar │ ├── apt_revenge_rat.yar │ ├── apt_rocketkitten_keylogger.yar │ ├── apt_rokrat.yar │ ├── apt_ruag.yar │ ├── apt_rwmc_powershell_creddump.yar │ ├── apt_sakula.yar │ ├── apt_saudi_aramco_phish.yar │ ├── apt_scanbox_deeppanda.yar │ ├── apt_scarcruft.yar │ ├── apt_seaduke_unit42.yar │ ├── apt_servantshell.yar │ ├── apt_shadowpad.yar │ ├── apt_shamoon.yar │ ├── apt_shamoon2.yar │ ├── apt_shellcrew_streamex.yar │ ├── apt_silence.yar │ ├── apt_skeletonkey.yar │ ├── apt_snaketurla_osx.yar │ ├── apt_snowglobe_babar.yar │ ├── apt_sofacy_dec15.yar │ ├── apt_sofacy_fysbis.yar │ ├── apt_sofacy_hospitality.yar │ ├── apt_sofacy_jun16.yar │ ├── apt_sofacy_oct17_camp.yar │ ├── apt_sofacy_xtunnel_bundestag.yar │ ├── apt_sphinx_moth.yar │ ├── apt_stonedrill.yar │ ├── apt_strider.yara │ ├── apt_stuxnet.yar │ ├── apt_suckfly.yar │ ├── apt_sysscan.yar │ ├── apt_ta17_293A.yar │ ├── apt_ta17_318A.yar │ ├── apt_ta17_318B.yar │ ├── apt_ta459.yar │ ├── apt_telebots.yar │ ├── apt_terracotta.yar │ ├── apt_terracotta_liudoor.yar │ ├── apt_threatgroup_3390.yar │ ├── apt_tick_datper.yar │ ├── apt_tidepool.yar │ ├── apt_tophat.yar │ ├── apt_triton.yar │ ├── apt_turbo_campaign.yar │ ├── apt_turla.yar │ ├── apt_turla_gazer.yar │ ├── apt_turla_neuron.yar │ ├── apt_uboat_rat.yar │ ├── apt_unit78020_malware.yar │ ├── apt_uscert_ta17-1117a.yar │ ├── apt_venom_linux_rootkit.yar │ ├── apt_volatile_cedar.yar │ ├── apt_waterbear.yar │ ├── apt_waterbug.yar │ ├── apt_webshell_chinachopper.yar │ ├── apt_wildneutron.yar │ ├── apt_wilted_tulip.yar │ ├── apt_win_plugx.yar │ ├── apt_winnti.yar │ ├── apt_winnti_hdroot.yar │ ├── apt_winnti_ms_report_201701.yar │ ├── apt_woolengoldfish.yar │ ├── apt_xrat.yar │ ├── apt_zxshell.yar │ ├── cn_pentestset_scripts.yar │ ├── cn_pentestset_tools.yar │ ├── cn_pentestset_webshells.yar │ ├── crime_andromeda_jun17.yar │ ├── crime_antifw_installrex.yar │ ├── crime_bad_patch.yar │ ├── crime_badrabbit.yar │ ├── crime_bernhard_pos.yar │ ├── crime_buzus_softpulse.yar │ ├── crime_cmstar.yar │ ├── crime_cn_campaign_njrat.yar │ ├── crime_cn_group_btc.yar │ ├── crime_cobaltgang.yar │ ├── crime_corkow_dll.yar │ ├── crime_credstealer_generic.yar │ ├── crime_cryptowall_svg.yar │ ├── crime_dexter_trojan.yar │ ├── crime_dridex_xml.yar │ ├── crime_enfal.yar │ ├── crime_envrial.yar │ ├── crime_eternalrocks.yar │ ├── crime_fareit.yar │ ├── crime_fireball.yar │ ├── crime_goldeneye.yar │ ├── crime_hermes_ransom.yar │ ├── crime_kasper_oct17.yar │ ├── crime_kins_dropper.yar │ ├── crime_kr_malware.yar │ ├── crime_kraken_bot1.yar │ ├── crime_kriskynote.yar │ ├── crime_locky.yar │ ├── crime_malumpos.yar │ ├── crime_malware_generic.yar │ ├── crime_malware_set_oct16.yar │ ├── crime_mikey_trojan.yar │ ├── crime_mirai.yar │ ├── crime_mywscript_dropper.yar │ ├── crime_nkminer.yar │ ├── crime_nopetya_jun17.yar │ ├── crime_ole_loadswf_cve_2018_4878.yar │ ├── crime_phish_gina_dec15.yar │ ├── crime_rombertik_carbongrabber.yar │ ├── crime_shifu_trojan.yar │ ├── crime_snarasite.yar │ ├── crime_teledoor.yar │ ├── crime_upatre_oct15.yar │ ├── crime_wannacry.yar │ ├── crime_zeus_panda.yar │ ├── exploit_cve_2015_1674.yar │ ├── exploit_cve_2015_1701.yar │ ├── exploit_cve_2015_2426.yar │ ├── exploit_cve_2015_2545.yar │ ├── exploit_cve_2017_11882.yar │ ├── exploit_cve_2017_8759.yar │ ├── exploit_cve_2017_9800.yar │ ├── exploit_cve_2018_0802.yar │ ├── exploit_rtf_ole2link.yar │ ├── exploit_uac_elevators.yar │ ├── gen_ace_with_exe.yar │ ├── gen_armitage.yar │ ├── gen_b374k_extra.yar │ ├── gen_case_anomalies.yar │ ├── gen_chaos_payload.yar │ ├── gen_cn_hacktool_scripts.yar │ ├── gen_cn_hacktools.yar │ ├── gen_cn_webshells.yar │ ├── gen_crunchrat.yar │ ├── gen_dde_in_office_docs.yar │ ├── gen_deviceguard_evasion.yar │ ├── gen_empire.yar │ ├── gen_enigma_protector.yar │ ├── gen_faked_versions.yar │ ├── gen_floxif.yar │ ├── gen_gen_cactustorch.yar │ ├── gen_gpp_cpassword.yar │ ├── gen_hawkeye.yar │ ├── gen_hta_anomalies.yar │ ├── gen_impacket_tools.yar │ ├── gen_invoke_mimikatz.yar │ ├── gen_invoke_psimage.yar │ ├── gen_invoke_thehash.yar │ ├── gen_javascript_powershell.yar │ ├── gen_kerberoast.yar │ ├── gen_kirbi_mimkatz.yar │ ├── gen_loaders.yar │ ├── gen_mal_link.yar │ ├── gen_mal_scripts.yar │ ├── gen_malware_set_qa.yar │ ├── gen_merlin_agent.yar │ ├── gen_metasploit_loader_rsmudge.yar │ ├── gen_metasploit_payloads.yar │ ├── gen_mimikittenz.yar │ ├── gen_mimipenguin.yar │ ├── gen_nopowershell.yar │ ├── gen_p0wnshell.yar │ ├── gen_pirpi.yar │ ├── gen_powerkatz.yar │ ├── gen_powershdll.yar │ ├── gen_powershell_empire.yar │ ├── gen_powershell_invocation.yar │ ├── gen_powershell_obfuscation.yar │ ├── gen_powershell_suite.yar │ ├── gen_powershell_susp.yar │ ├── gen_powershell_toolkit.yar │ ├── gen_ps_empire_eval.yar │ ├── gen_ps_osiris.yar │ ├── gen_pua.yar │ ├── gen_pupy_rat.yar │ ├── gen_rats_malwareconfig.yar │ ├── gen_recon_keywords.yar │ ├── gen_redsails.yar │ ├── gen_regsrv32_issue.yar │ ├── gen_rottenpotato.yar │ ├── gen_sharpcat.yar │ ├── gen_susp_strings_in_ole.yar │ ├── gen_suspicious_strings.yar │ ├── gen_sysinternals_anomaly.yar │ ├── gen_tempracer.yar │ ├── gen_thumbs_cloaking.yar │ ├── gen_transformed_strings.yar │ ├── gen_unspecified_malware.yar │ ├── gen_url_to_local_exe.yar │ ├── gen_win_privesc.yar │ ├── gen_winpayloads.yar │ ├── gen_winshells.yar │ ├── gen_wmi_implant.yar │ ├── gen_xtreme_rat.yar │ ├── gen_ysoserial_payloads.yar │ ├── general_cloaking.yar │ ├── general_officemacros.yar │ ├── generic_anomalies.yar │ ├── generic_cryptors.yar │ ├── generic_dumps.yar │ ├── generic_exe2hex_payload.yar │ ├── pua_cryptocoin_miner.yar │ ├── pua_xmrig_monero_miner.yar │ ├── pup_lightftp.yar │ ├── spy_equation_fiveeyes.yar │ ├── spy_querty_fiveeyes.yar │ ├── spy_regin_fiveeyes.yar │ ├── thor-hacktools.yar │ ├── thor-webshells.yar │ ├── thor_inverse_matches.yar │ └── threat_lenovo_superfish.yar ├── Bro ├── __init__.py ├── api.yaml ├── app.py └── requirements.txt ├── Converter ├── __init__.py ├── api.yaml ├── main.py └── requirements.txt ├── CyberAnalytic ├── __init__.py ├── api.yaml ├── main.py └── requirements.txt ├── CyberChef ├── README.md ├── __init__.py ├── api.yaml ├── app.py └── requirements.txt ├── DISCLAIMER.md ├── DailyQuote ├── __init__.py ├── api.yaml ├── display.py ├── interface │ ├── static │ │ └── main.js │ └── templates │ │ └── index.html ├── main.py └── requirements.txt ├── Elasticsearch ├── __init__.py ├── api.yaml ├── app.py └── requirements.txt ├── EmailSender ├── __init__.py ├── api.yaml ├── main.py └── requirements.txt ├── EthereumBlockchain ├── README ├── __init__.py ├── api.yaml ├── installDependencies.sh ├── main.py ├── package.json ├── password ├── requirements.txt ├── setup-parameters.sh ├── step1-create-accounts.sh ├── step2-create-genesis-file.js ├── step2-create-genesis-file.sh ├── step2-genesis-template.json ├── step3-start-miners.sh ├── step4-connect-miners.sh ├── step5-deploy-contract.js ├── step5-deploy-contract.sh ├── step5-greeter.sol ├── step6-submit-greeting.js ├── step6-submit-greeting.sh └── tests │ ├── __init__.py │ └── testMain.py ├── FacebookUserPost ├── __init__.py ├── api.yaml ├── display.py ├── interface │ ├── static │ │ └── style.css │ └── templates │ │ └── index.html ├── main.py ├── requirements.txt └── tests │ ├── __init__.py │ └── testMain.py ├── FileUtilities ├── __init__.py ├── actions.py ├── api.yaml ├── display.py └── requirements.txt ├── HelloWorld ├── __init__.py ├── api.yaml ├── display.py ├── interface │ ├── static │ │ ├── lib │ │ │ ├── c3 │ │ │ │ ├── c3.min.css │ │ │ │ └── c3.min.js │ │ │ ├── d3 │ │ │ │ └── d3.min.js │ │ │ └── jvectormap │ │ │ │ ├── jquery-jvectormap-1.2.2.css │ │ │ │ ├── jquery-jvectormap-1.2.2.min.js │ │ │ │ └── jquery-jvectormap-world-mill-en.js │ │ └── main.js │ └── templates │ │ └── index.html ├── main.py ├── requirements.txt └── widgets │ ├── __init__.py │ └── testWidget │ ├── __init__.py │ ├── display.py │ ├── static │ └── main.js │ └── templates │ └── index.html ├── LICENSE.md ├── Lifx ├── __init__.py ├── api.yaml ├── main.py └── requirements.txt ├── LinuxShell ├── __init__.py ├── api.yaml ├── app.py ├── requirements.txt └── scripts │ └── test.sh ├── NetworkRouting ├── __init__.py ├── api.yaml ├── app.py └── requirements.txt ├── Nmap ├── __init__.py ├── api.yaml ├── main.py └── requirements.txt ├── OpenVAS ├── __init__.py ├── api.yaml ├── app.py ├── goxparse │ ├── goxparse.py │ └── readme.md ├── pvsl │ ├── LICENSE │ ├── README.rst │ ├── __init__.py │ ├── client.py │ ├── exceptions.py │ ├── response.py │ └── utils.py └── requirements.txt ├── Pcap ├── __init__.py ├── actions.py ├── api.yaml ├── display.py └── requirements.txt ├── PowerShell ├── __init__.py ├── api.yaml ├── app.py ├── interface │ ├── static │ │ ├── lib │ │ │ ├── c3 │ │ │ │ ├── c3.min.css │ │ │ │ └── c3.min.js │ │ │ ├── d3 │ │ │ │ └── d3.min.js │ │ │ └── jvectormap │ │ │ │ ├── jquery-jvectormap-1.2.2.css │ │ │ │ ├── jquery-jvectormap-1.2.2.min.js │ │ │ │ └── jquery-jvectormap-world-mill-en.js │ │ └── main.js │ └── templates │ │ └── index.html ├── requirements.txt ├── scripts │ └── test.ps1 └── tests │ ├── __init__.py │ └── testMain.py ├── ProcessUtilities ├── __init__.py ├── actions.py ├── api.yaml ├── display.py └── requirements.txt ├── Proxmox ├── __init__.py ├── api.yaml ├── app.py └── requirements.txt ├── README.md ├── Sftp ├── __init__.py ├── api.yaml ├── main.py └── requirements.txt ├── SkeletonApp ├── __init__.py ├── api.yaml ├── display.py ├── interface │ └── templates │ │ └── index.html ├── main.py └── requirements.txt ├── SmartPlug ├── __init__.py ├── api.yaml ├── main.py └── requirements.txt ├── Snort ├── __init__.py ├── api.yaml ├── app.py └── requirements.txt ├── Splunk ├── __init__.py ├── api.yaml ├── main.py └── requirements.txt ├── Tesla ├── __init__.py ├── api.yaml ├── main.py ├── requirements.txt └── teslajson │ ├── .gitignore │ ├── CHANGES.md │ ├── LICENSE │ ├── README.md │ ├── __init__.py │ ├── setup.py │ └── teslajson.py ├── UncomplicatedFirewall ├── __init__.py ├── actions.py ├── api.yaml ├── display.py └── requirements.txt ├── Utilities ├── __init__.py ├── actions.py ├── api.yaml ├── conditions.py ├── events.pybak ├── main.py ├── muster.desktop ├── requirements.txt └── transforms.py ├── Walkoff ├── __init__.py ├── api.yaml ├── display.py ├── main.py └── requirements.txt ├── WatsonVisualRecognition ├── __init__.py ├── api.yaml ├── main.py └── requirements.txt ├── Weather ├── __init__.py ├── api.yaml ├── main.py └── requirements.txt ├── Webcam ├── __init__.py ├── api.yaml ├── main.py └── requirements.txt └── demo_packages ├── bro_interface_demo ├── apps │ └── Bro │ │ ├── __init__.py │ │ ├── api.yaml │ │ ├── app.py │ │ └── requirements.txt ├── dns.log ├── http.log ├── interfaces │ └── Bro │ │ ├── __init__.py │ │ ├── brolog.py │ │ └── interface │ │ ├── static │ │ ├── lib │ │ │ ├── bootstrap │ │ │ │ ├── CHANGELOG.md │ │ │ │ ├── Gruntfile.js │ │ │ │ ├── LICENSE │ │ │ │ ├── README.md │ │ │ │ ├── dist │ │ │ │ │ ├── css │ │ │ │ │ │ ├── bootstrap-theme.css │ │ │ │ │ │ ├── bootstrap-theme.css.map │ │ │ │ │ │ ├── bootstrap-theme.min.css │ │ │ │ │ │ ├── bootstrap-theme.min.css.map │ │ │ │ │ │ ├── bootstrap.css │ │ │ │ │ │ ├── bootstrap.css.map │ │ │ │ │ │ ├── bootstrap.min.css │ │ │ │ │ │ └── bootstrap.min.css.map │ │ │ │ │ ├── fonts │ │ │ │ │ │ ├── glyphicons-halflings-regular.eot │ │ │ │ │ │ ├── glyphicons-halflings-regular.svg │ │ │ │ │ │ ├── glyphicons-halflings-regular.ttf │ │ │ │ │ │ ├── glyphicons-halflings-regular.woff │ │ │ │ │ │ └── glyphicons-halflings-regular.woff2 │ │ │ │ │ └── js │ │ │ │ │ │ ├── bootstrap.js │ │ │ │ │ │ ├── bootstrap.min.js │ │ │ │ │ │ └── npm.js │ │ │ │ ├── fonts │ │ │ │ │ ├── glyphicons-halflings-regular.eot │ │ │ │ │ ├── glyphicons-halflings-regular.svg │ │ │ │ │ ├── glyphicons-halflings-regular.ttf │ │ │ │ │ ├── glyphicons-halflings-regular.woff │ │ │ │ │ └── glyphicons-halflings-regular.woff2 │ │ │ │ ├── grunt │ │ │ │ │ ├── .jshintrc │ │ │ │ │ ├── bs-commonjs-generator.js │ │ │ │ │ ├── bs-glyphicons-data-generator.js │ │ │ │ │ ├── bs-lessdoc-parser.js │ │ │ │ │ ├── bs-raw-files-generator.js │ │ │ │ │ ├── change-version.js │ │ │ │ │ ├── configBridge.json │ │ │ │ │ ├── npm-shrinkwrap.json │ │ │ │ │ └── sauce_browsers.yml │ │ │ │ ├── js │ │ │ │ │ ├── affix.js │ │ │ │ │ ├── alert.js │ │ │ │ │ ├── button.js │ │ │ │ │ ├── carousel.js │ │ │ │ │ ├── collapse.js │ │ │ │ │ ├── dropdown.js │ │ │ │ │ ├── modal.js │ │ │ │ │ ├── popover.js │ │ │ │ │ ├── scrollspy.js │ │ │ │ │ ├── tab.js │ │ │ │ │ ├── tooltip.js │ │ │ │ │ └── transition.js │ │ │ │ ├── less │ │ │ │ │ ├── alerts.less │ │ │ │ │ ├── badges.less │ │ │ │ │ ├── bootstrap.less │ │ │ │ │ ├── breadcrumbs.less │ │ │ │ │ ├── button-groups.less │ │ │ │ │ ├── buttons.less │ │ │ │ │ ├── carousel.less │ │ │ │ │ ├── close.less │ │ │ │ │ ├── code.less │ │ │ │ │ ├── component-animations.less │ │ │ │ │ ├── dropdowns.less │ │ │ │ │ ├── forms.less │ │ │ │ │ ├── glyphicons.less │ │ │ │ │ ├── grid.less │ │ │ │ │ ├── input-groups.less │ │ │ │ │ ├── jumbotron.less │ │ │ │ │ ├── labels.less │ │ │ │ │ ├── list-group.less │ │ │ │ │ ├── media.less │ │ │ │ │ ├── mixins.less │ │ │ │ │ ├── mixins │ │ │ │ │ │ ├── alerts.less │ │ │ │ │ │ ├── background-variant.less │ │ │ │ │ │ ├── border-radius.less │ │ │ │ │ │ ├── buttons.less │ │ │ │ │ │ ├── center-block.less │ │ │ │ │ │ ├── clearfix.less │ │ │ │ │ │ ├── forms.less │ │ │ │ │ │ ├── gradients.less │ │ │ │ │ │ ├── grid-framework.less │ │ │ │ │ │ ├── grid.less │ │ │ │ │ │ ├── hide-text.less │ │ │ │ │ │ ├── image.less │ │ │ │ │ │ ├── labels.less │ │ │ │ │ │ ├── list-group.less │ │ │ │ │ │ ├── nav-divider.less │ │ │ │ │ │ ├── nav-vertical-align.less │ │ │ │ │ │ ├── opacity.less │ │ │ │ │ │ ├── pagination.less │ │ │ │ │ │ ├── panels.less │ │ │ │ │ │ ├── progress-bar.less │ │ │ │ │ │ ├── reset-filter.less │ │ │ │ │ │ ├── reset-text.less │ │ │ │ │ │ ├── resize.less │ │ │ │ │ │ ├── responsive-visibility.less │ │ │ │ │ │ ├── size.less │ │ │ │ │ │ ├── tab-focus.less │ │ │ │ │ │ ├── table-row.less │ │ │ │ │ │ ├── text-emphasis.less │ │ │ │ │ │ ├── text-overflow.less │ │ │ │ │ │ └── vendor-prefixes.less │ │ │ │ │ ├── modals.less │ │ │ │ │ ├── navbar.less │ │ │ │ │ ├── navs.less │ │ │ │ │ ├── normalize.less │ │ │ │ │ ├── pager.less │ │ │ │ │ ├── pagination.less │ │ │ │ │ ├── panels.less │ │ │ │ │ ├── popovers.less │ │ │ │ │ ├── print.less │ │ │ │ │ ├── progress-bars.less │ │ │ │ │ ├── responsive-embed.less │ │ │ │ │ ├── responsive-utilities.less │ │ │ │ │ ├── scaffolding.less │ │ │ │ │ ├── tables.less │ │ │ │ │ ├── theme.less │ │ │ │ │ ├── thumbnails.less │ │ │ │ │ ├── tooltip.less │ │ │ │ │ ├── type.less │ │ │ │ │ ├── utilities.less │ │ │ │ │ ├── variables.less │ │ │ │ │ └── wells.less │ │ │ │ └── package.json │ │ │ ├── c3 │ │ │ │ ├── c3.min.css │ │ │ │ └── c3.min.js │ │ │ ├── d3 │ │ │ │ └── d3.min.js │ │ │ └── jquery │ │ │ │ ├── AUTHORS.txt │ │ │ │ ├── LICENSE.txt │ │ │ │ ├── README.md │ │ │ │ ├── bower.json │ │ │ │ ├── dist │ │ │ │ ├── core.js │ │ │ │ ├── jquery.js │ │ │ │ ├── jquery.min.js │ │ │ │ ├── jquery.min.map │ │ │ │ ├── jquery.slim.js │ │ │ │ ├── jquery.slim.min.js │ │ │ │ └── jquery.slim.min.map │ │ │ │ ├── external │ │ │ │ └── sizzle │ │ │ │ │ ├── LICENSE.txt │ │ │ │ │ └── dist │ │ │ │ │ ├── sizzle.js │ │ │ │ │ ├── sizzle.min.js │ │ │ │ │ └── sizzle.min.map │ │ │ │ ├── package.json │ │ │ │ └── src │ │ │ │ ├── .eslintrc.json │ │ │ │ ├── ajax.js │ │ │ │ ├── ajax │ │ │ │ ├── jsonp.js │ │ │ │ ├── load.js │ │ │ │ ├── parseXML.js │ │ │ │ ├── script.js │ │ │ │ ├── var │ │ │ │ │ ├── location.js │ │ │ │ │ ├── nonce.js │ │ │ │ │ └── rquery.js │ │ │ │ └── xhr.js │ │ │ │ ├── attributes.js │ │ │ │ ├── attributes │ │ │ │ ├── attr.js │ │ │ │ ├── classes.js │ │ │ │ ├── prop.js │ │ │ │ ├── support.js │ │ │ │ └── val.js │ │ │ │ ├── callbacks.js │ │ │ │ ├── core.js │ │ │ │ ├── core │ │ │ │ ├── DOMEval.js │ │ │ │ ├── access.js │ │ │ │ ├── init.js │ │ │ │ ├── nodeName.js │ │ │ │ ├── parseHTML.js │ │ │ │ ├── ready-no-deferred.js │ │ │ │ ├── ready.js │ │ │ │ ├── readyException.js │ │ │ │ ├── stripAndCollapse.js │ │ │ │ ├── support.js │ │ │ │ └── var │ │ │ │ │ └── rsingleTag.js │ │ │ │ ├── css.js │ │ │ │ ├── css │ │ │ │ ├── addGetHookIf.js │ │ │ │ ├── adjustCSS.js │ │ │ │ ├── curCSS.js │ │ │ │ ├── hiddenVisibleSelectors.js │ │ │ │ ├── showHide.js │ │ │ │ ├── support.js │ │ │ │ └── var │ │ │ │ │ ├── cssExpand.js │ │ │ │ │ ├── getStyles.js │ │ │ │ │ ├── isHiddenWithinTree.js │ │ │ │ │ ├── rmargin.js │ │ │ │ │ ├── rnumnonpx.js │ │ │ │ │ └── swap.js │ │ │ │ ├── data.js │ │ │ │ ├── data │ │ │ │ ├── Data.js │ │ │ │ └── var │ │ │ │ │ ├── acceptData.js │ │ │ │ │ ├── dataPriv.js │ │ │ │ │ └── dataUser.js │ │ │ │ ├── deferred.js │ │ │ │ ├── deferred │ │ │ │ └── exceptionHook.js │ │ │ │ ├── deprecated.js │ │ │ │ ├── dimensions.js │ │ │ │ ├── effects.js │ │ │ │ ├── effects │ │ │ │ ├── Tween.js │ │ │ │ └── animatedSelector.js │ │ │ │ ├── event.js │ │ │ │ ├── event │ │ │ │ ├── ajax.js │ │ │ │ ├── alias.js │ │ │ │ ├── focusin.js │ │ │ │ ├── support.js │ │ │ │ └── trigger.js │ │ │ │ ├── exports │ │ │ │ ├── amd.js │ │ │ │ └── global.js │ │ │ │ ├── jquery.js │ │ │ │ ├── manipulation.js │ │ │ │ ├── manipulation │ │ │ │ ├── _evalUrl.js │ │ │ │ ├── buildFragment.js │ │ │ │ ├── getAll.js │ │ │ │ ├── setGlobalEval.js │ │ │ │ ├── support.js │ │ │ │ ├── var │ │ │ │ │ ├── rcheckableType.js │ │ │ │ │ ├── rscriptType.js │ │ │ │ │ └── rtagName.js │ │ │ │ └── wrapMap.js │ │ │ │ ├── offset.js │ │ │ │ ├── queue.js │ │ │ │ ├── queue │ │ │ │ └── delay.js │ │ │ │ ├── selector-native.js │ │ │ │ ├── selector-sizzle.js │ │ │ │ ├── selector.js │ │ │ │ ├── serialize.js │ │ │ │ ├── traversing.js │ │ │ │ ├── traversing │ │ │ │ ├── findFilter.js │ │ │ │ └── var │ │ │ │ │ ├── dir.js │ │ │ │ │ ├── rneedsContext.js │ │ │ │ │ └── siblings.js │ │ │ │ ├── var │ │ │ │ ├── ObjectFunctionString.js │ │ │ │ ├── arr.js │ │ │ │ ├── class2type.js │ │ │ │ ├── concat.js │ │ │ │ ├── document.js │ │ │ │ ├── documentElement.js │ │ │ │ ├── fnToString.js │ │ │ │ ├── getProto.js │ │ │ │ ├── hasOwn.js │ │ │ │ ├── indexOf.js │ │ │ │ ├── pnum.js │ │ │ │ ├── push.js │ │ │ │ ├── rcssNum.js │ │ │ │ ├── rnothtmlwhite.js │ │ │ │ ├── slice.js │ │ │ │ ├── support.js │ │ │ │ └── toString.js │ │ │ │ └── wrap.js │ │ └── visualize.js │ │ └── templates │ │ └── index.html └── workflows │ └── Bro.playbook ├── bro_netmap_interface ├── WalkoffBroNetmap.json ├── apps │ ├── AlienVault │ │ ├── __init__.py │ │ ├── api.yaml │ │ ├── app.py │ │ ├── requirements.txt │ │ └── signature-base │ │ │ ├── .gitignore │ │ │ ├── .travis.yml │ │ │ ├── LICENSE │ │ │ ├── README.md │ │ │ ├── build-rules.py │ │ │ ├── iocs │ │ │ ├── README.txt │ │ │ ├── otx-c2-iocs-ipv4.txt │ │ │ ├── otx-c2-iocs-ipv6.txt │ │ │ ├── otx-c2-iocs.txt │ │ │ ├── otx-filename-iocs.txt │ │ │ └── otx-hash-iocs.txt │ │ │ ├── makefile │ │ │ ├── misc │ │ │ └── file-type-signatures.txt │ │ │ ├── threatintel │ │ │ ├── LICENSE │ │ │ ├── get-misp-iocs.exe │ │ │ ├── get-misp-iocs.py │ │ │ ├── get-otx-iocs.exe │ │ │ └── get-otx-iocs.py │ │ │ ├── vendor │ │ │ └── yara │ │ │ │ └── airbnb_binaryalert.yar │ │ │ └── yara │ │ │ ├── apt_agent_btz.yar │ │ │ ├── apt_alienspy_rat.yar │ │ │ ├── apt_apt10.yar │ │ │ ├── apt_apt12_malware.yar │ │ │ ├── apt_apt17_mal_sep17.yar │ │ │ ├── apt_apt17_malware.yar │ │ │ ├── apt_apt19.yar │ │ │ ├── apt_apt28.yar │ │ │ ├── apt_apt29_grizzly_steppe.yar │ │ │ ├── apt_apt30_backspace.yar │ │ │ ├── apt_apt34.yar │ │ │ ├── apt_apt6_malware.yar │ │ │ ├── apt_backdoor_ssh_python.yar │ │ │ ├── apt_backspace.yar │ │ │ ├── apt_beepservice.yar │ │ │ ├── apt_between-hk-and-burma.yar │ │ │ ├── apt_blackenergy.yar │ │ │ ├── apt_blackenergy_installer.yar │ │ │ ├── apt_bluetermite_emdivi.yar │ │ │ ├── apt_bronze_butler.yar │ │ │ ├── apt_buckeye.yar │ │ │ ├── apt_carbon_paper_turla.yar │ │ │ ├── apt_casper.yar │ │ │ ├── apt_cheshirecat.yar │ │ │ ├── apt_cloudduke.yar │ │ │ ├── apt_cmstar.yar │ │ │ ├── apt_cn_pp_zerot.yar │ │ │ ├── apt_codoso.yar │ │ │ ├── apt_coreimpact_agent.yar │ │ │ ├── apt_crash_override.yar │ │ │ ├── apt_cve2015_5119.yar │ │ │ ├── apt_danti_svcmondr.yar │ │ │ ├── apt_darkcaracal.yar │ │ │ ├── apt_deeppanda.yar │ │ │ ├── apt_derusbi.yar │ │ │ ├── apt_dragonfly.yar │ │ │ ├── apt_dubnium.yar │ │ │ ├── apt_duqu2.yar │ │ │ ├── apt_emissary.yar │ │ │ ├── apt_eqgrp.yar │ │ │ ├── apt_eqgrp_apr17.yar │ │ │ ├── apt_eternalblue_non_wannacry.yar │ │ │ ├── apt_fakem_backdoor.yar │ │ │ ├── apt_fancybear_dnc.yar │ │ │ ├── apt_fidelis_phishing_plain_sight.yar │ │ │ ├── apt_fin7_backdoor.yar │ │ │ ├── apt_foudre.yar │ │ │ ├── apt_four_element_sword.yar │ │ │ ├── apt_freemilk.yar │ │ │ ├── apt_furtim.yar │ │ │ ├── apt_fvey_shadowbroker_dec16.yar │ │ │ ├── apt_fvey_shadowbroker_jan17.yar │ │ │ ├── apt_ghostdragon_gh0st_rat.yar │ │ │ ├── apt_glassRAT.yar │ │ │ ├── apt_golddragon.yar │ │ │ ├── apt_greenbug.yar │ │ │ ├── apt_grizzlybear_uscert.yar │ │ │ ├── apt_hackingteam_rules.yar │ │ │ ├── apt_ham_tofu_chches.yar │ │ │ ├── apt_hatman.yar │ │ │ ├── apt_hellsing_kaspersky.yar │ │ │ ├── apt_hidden_cobra.yar │ │ │ ├── apt_hiddencobra_bankshot.yar │ │ │ ├── apt_hizor_rat.yar │ │ │ ├── apt_hkdoor.yar │ │ │ ├── apt_indetectables_rat.yar │ │ │ ├── apt_industroyer.yar │ │ │ ├── apt_inocnation.yar │ │ │ ├── apt_irongate.yar │ │ │ ├── apt_irontiger.yar │ │ │ ├── apt_irontiger_trendmicro.yar │ │ │ ├── apt_ism_rat.yar │ │ │ ├── apt_kaspersky_duqu2.yar │ │ │ ├── apt_keyboys.yar │ │ │ ├── apt_keylogger_cn.yar │ │ │ ├── apt_khrat.yar │ │ │ ├── apt_korplug_fast.yar │ │ │ ├── apt_laudanum_webshells.yar │ │ │ ├── apt_lazarus_dec17.yar │ │ │ ├── apt_leviathan.yar │ │ │ ├── apt_lotusblossom_elise.yar │ │ │ ├── apt_magichound.yar │ │ │ ├── apt_microcin.yar │ │ │ ├── apt_middle_east_talosreport.yar │ │ │ ├── apt_miniasp.yar │ │ │ ├── apt_minidionis.yar │ │ │ ├── apt_mofang.yar │ │ │ ├── apt_molerats_jul17.yar │ │ │ ├── apt_monsoon.yar │ │ │ ├── apt_moonlightmaze.yar │ │ │ ├── apt_ms_platinum.yara │ │ │ ├── apt_naikon.yar │ │ │ ├── apt_nanocore_rat.yar │ │ │ ├── apt_netwire_rat.yar │ │ │ ├── apt_oilrig.yar │ │ │ ├── apt_oilrig_oct17.yar │ │ │ ├── apt_oilrig_rgdoor.yar │ │ │ ├── apt_olympic_destroyer.yar │ │ │ ├── apt_onhat_proxy.yar │ │ │ ├── apt_op_cleaver.yar │ │ │ ├── apt_op_cloudhopper.yar │ │ │ ├── apt_passcv.yar │ │ │ ├── apt_passthehashtoolkit.yar │ │ │ ├── apt_plugx.yar │ │ │ ├── apt_poisonivy.yar │ │ │ ├── apt_poisonivy_gen3.yar │ │ │ ├── apt_poseidon_group.yar │ │ │ ├── apt_poshspy.yar │ │ │ ├── apt_prikormka.yar │ │ │ ├── apt_project_m.yar │ │ │ ├── apt_project_sauron.yara │ │ │ ├── apt_project_sauron_extras.yar │ │ │ ├── apt_promethium_neodymium.yar │ │ │ ├── apt_putterpanda.yar │ │ │ ├── apt_quarkspwdump.yar │ │ │ ├── apt_quasar_rat.yar │ │ │ ├── apt_quasar_vermin.yar │ │ │ ├── apt_reaver_sunorcal.yar │ │ │ ├── apt_rehashed_rat.yar │ │ │ ├── apt_revenge_rat.yar │ │ │ ├── apt_rocketkitten_keylogger.yar │ │ │ ├── apt_rokrat.yar │ │ │ ├── apt_ruag.yar │ │ │ ├── apt_rwmc_powershell_creddump.yar │ │ │ ├── apt_sakula.yar │ │ │ ├── apt_saudi_aramco_phish.yar │ │ │ ├── apt_scanbox_deeppanda.yar │ │ │ ├── apt_scarcruft.yar │ │ │ ├── apt_seaduke_unit42.yar │ │ │ ├── apt_servantshell.yar │ │ │ ├── apt_shadowpad.yar │ │ │ ├── apt_shamoon.yar │ │ │ ├── apt_shamoon2.yar │ │ │ ├── apt_shellcrew_streamex.yar │ │ │ ├── apt_silence.yar │ │ │ ├── apt_skeletonkey.yar │ │ │ ├── apt_snaketurla_osx.yar │ │ │ ├── apt_snowglobe_babar.yar │ │ │ ├── apt_sofacy_dec15.yar │ │ │ ├── apt_sofacy_fysbis.yar │ │ │ ├── apt_sofacy_hospitality.yar │ │ │ ├── apt_sofacy_jun16.yar │ │ │ ├── apt_sofacy_oct17_camp.yar │ │ │ ├── apt_sofacy_xtunnel_bundestag.yar │ │ │ ├── apt_sphinx_moth.yar │ │ │ ├── apt_stonedrill.yar │ │ │ ├── apt_strider.yara │ │ │ ├── apt_stuxnet.yar │ │ │ ├── apt_suckfly.yar │ │ │ ├── apt_sysscan.yar │ │ │ ├── apt_ta17_293A.yar │ │ │ ├── apt_ta17_318A.yar │ │ │ ├── apt_ta17_318B.yar │ │ │ ├── apt_ta459.yar │ │ │ ├── apt_telebots.yar │ │ │ ├── apt_terracotta.yar │ │ │ ├── apt_terracotta_liudoor.yar │ │ │ ├── apt_threatgroup_3390.yar │ │ │ ├── apt_tick_datper.yar │ │ │ ├── apt_tidepool.yar │ │ │ ├── apt_tophat.yar │ │ │ ├── apt_triton.yar │ │ │ ├── apt_turbo_campaign.yar │ │ │ ├── apt_turla.yar │ │ │ ├── apt_turla_gazer.yar │ │ │ ├── apt_turla_neuron.yar │ │ │ ├── apt_uboat_rat.yar │ │ │ ├── apt_unit78020_malware.yar │ │ │ ├── apt_uscert_ta17-1117a.yar │ │ │ ├── apt_venom_linux_rootkit.yar │ │ │ ├── apt_volatile_cedar.yar │ │ │ ├── apt_waterbear.yar │ │ │ ├── apt_waterbug.yar │ │ │ ├── apt_webshell_chinachopper.yar │ │ │ ├── apt_wildneutron.yar │ │ │ ├── apt_wilted_tulip.yar │ │ │ ├── apt_win_plugx.yar │ │ │ ├── apt_winnti.yar │ │ │ ├── apt_winnti_hdroot.yar │ │ │ ├── apt_winnti_ms_report_201701.yar │ │ │ ├── apt_woolengoldfish.yar │ │ │ ├── apt_xrat.yar │ │ │ ├── apt_zxshell.yar │ │ │ ├── cn_pentestset_scripts.yar │ │ │ ├── cn_pentestset_tools.yar │ │ │ ├── cn_pentestset_webshells.yar │ │ │ ├── crime_andromeda_jun17.yar │ │ │ ├── crime_antifw_installrex.yar │ │ │ ├── crime_bad_patch.yar │ │ │ ├── crime_badrabbit.yar │ │ │ ├── crime_bernhard_pos.yar │ │ │ ├── crime_buzus_softpulse.yar │ │ │ ├── crime_cmstar.yar │ │ │ ├── crime_cn_campaign_njrat.yar │ │ │ ├── crime_cn_group_btc.yar │ │ │ ├── crime_cobaltgang.yar │ │ │ ├── crime_corkow_dll.yar │ │ │ ├── crime_credstealer_generic.yar │ │ │ ├── crime_cryptowall_svg.yar │ │ │ ├── crime_dexter_trojan.yar │ │ │ ├── crime_dridex_xml.yar │ │ │ ├── crime_enfal.yar │ │ │ ├── crime_envrial.yar │ │ │ ├── crime_eternalrocks.yar │ │ │ ├── crime_fareit.yar │ │ │ ├── crime_fireball.yar │ │ │ ├── crime_goldeneye.yar │ │ │ ├── crime_hermes_ransom.yar │ │ │ ├── crime_kasper_oct17.yar │ │ │ ├── crime_kins_dropper.yar │ │ │ ├── crime_kr_malware.yar │ │ │ ├── crime_kraken_bot1.yar │ │ │ ├── crime_kriskynote.yar │ │ │ ├── crime_locky.yar │ │ │ ├── crime_malumpos.yar │ │ │ ├── crime_malware_generic.yar │ │ │ ├── crime_malware_set_oct16.yar │ │ │ ├── crime_mikey_trojan.yar │ │ │ ├── crime_mirai.yar │ │ │ ├── crime_mywscript_dropper.yar │ │ │ ├── crime_nkminer.yar │ │ │ ├── crime_nopetya_jun17.yar │ │ │ ├── crime_ole_loadswf_cve_2018_4878.yar │ │ │ ├── crime_phish_gina_dec15.yar │ │ │ ├── crime_rombertik_carbongrabber.yar │ │ │ ├── crime_shifu_trojan.yar │ │ │ ├── crime_snarasite.yar │ │ │ ├── crime_teledoor.yar │ │ │ ├── crime_upatre_oct15.yar │ │ │ ├── crime_wannacry.yar │ │ │ ├── crime_zeus_panda.yar │ │ │ ├── exploit_cve_2015_1674.yar │ │ │ ├── exploit_cve_2015_1701.yar │ │ │ ├── exploit_cve_2015_2426.yar │ │ │ ├── exploit_cve_2015_2545.yar │ │ │ ├── exploit_cve_2017_11882.yar │ │ │ ├── exploit_cve_2017_8759.yar │ │ │ ├── exploit_cve_2017_9800.yar │ │ │ ├── exploit_cve_2018_0802.yar │ │ │ ├── exploit_rtf_ole2link.yar │ │ │ ├── exploit_uac_elevators.yar │ │ │ ├── gen_ace_with_exe.yar │ │ │ ├── gen_armitage.yar │ │ │ ├── gen_b374k_extra.yar │ │ │ ├── gen_case_anomalies.yar │ │ │ ├── gen_chaos_payload.yar │ │ │ ├── gen_cn_hacktool_scripts.yar │ │ │ ├── gen_cn_hacktools.yar │ │ │ ├── gen_cn_webshells.yar │ │ │ ├── gen_crunchrat.yar │ │ │ ├── gen_dde_in_office_docs.yar │ │ │ ├── gen_deviceguard_evasion.yar │ │ │ ├── gen_empire.yar │ │ │ ├── gen_enigma_protector.yar │ │ │ ├── gen_faked_versions.yar │ │ │ ├── gen_floxif.yar │ │ │ ├── gen_gen_cactustorch.yar │ │ │ ├── gen_gpp_cpassword.yar │ │ │ ├── gen_hawkeye.yar │ │ │ ├── gen_hta_anomalies.yar │ │ │ ├── gen_impacket_tools.yar │ │ │ ├── gen_invoke_mimikatz.yar │ │ │ ├── gen_invoke_psimage.yar │ │ │ ├── gen_invoke_thehash.yar │ │ │ ├── gen_javascript_powershell.yar │ │ │ ├── gen_kerberoast.yar │ │ │ ├── gen_kirbi_mimkatz.yar │ │ │ ├── gen_loaders.yar │ │ │ ├── gen_mal_link.yar │ │ │ ├── gen_mal_scripts.yar │ │ │ ├── gen_malware_set_qa.yar │ │ │ ├── gen_merlin_agent.yar │ │ │ ├── gen_metasploit_loader_rsmudge.yar │ │ │ ├── gen_metasploit_payloads.yar │ │ │ ├── gen_mimikittenz.yar │ │ │ ├── gen_mimipenguin.yar │ │ │ ├── gen_nopowershell.yar │ │ │ ├── gen_p0wnshell.yar │ │ │ ├── gen_pirpi.yar │ │ │ ├── gen_powerkatz.yar │ │ │ ├── gen_powershdll.yar │ │ │ ├── gen_powershell_empire.yar │ │ │ ├── gen_powershell_invocation.yar │ │ │ ├── gen_powershell_obfuscation.yar │ │ │ ├── gen_powershell_suite.yar │ │ │ ├── gen_powershell_susp.yar │ │ │ ├── gen_powershell_toolkit.yar │ │ │ ├── gen_ps_empire_eval.yar │ │ │ ├── gen_ps_osiris.yar │ │ │ ├── gen_pua.yar │ │ │ ├── gen_pupy_rat.yar │ │ │ ├── gen_rats_malwareconfig.yar │ │ │ ├── gen_recon_keywords.yar │ │ │ ├── gen_redsails.yar │ │ │ ├── gen_regsrv32_issue.yar │ │ │ ├── gen_rottenpotato.yar │ │ │ ├── gen_sharpcat.yar │ │ │ ├── gen_susp_strings_in_ole.yar │ │ │ ├── gen_suspicious_strings.yar │ │ │ ├── gen_sysinternals_anomaly.yar │ │ │ ├── gen_tempracer.yar │ │ │ ├── gen_thumbs_cloaking.yar │ │ │ ├── gen_transformed_strings.yar │ │ │ ├── gen_unspecified_malware.yar │ │ │ ├── gen_url_to_local_exe.yar │ │ │ ├── gen_win_privesc.yar │ │ │ ├── gen_winpayloads.yar │ │ │ ├── gen_winshells.yar │ │ │ ├── gen_wmi_implant.yar │ │ │ ├── gen_xtreme_rat.yar │ │ │ ├── gen_ysoserial_payloads.yar │ │ │ ├── general_cloaking.yar │ │ │ ├── general_officemacros.yar │ │ │ ├── generic_anomalies.yar │ │ │ ├── generic_cryptors.yar │ │ │ ├── generic_dumps.yar │ │ │ ├── generic_exe2hex_payload.yar │ │ │ ├── pua_cryptocoin_miner.yar │ │ │ ├── pua_xmrig_monero_miner.yar │ │ │ ├── pup_lightftp.yar │ │ │ ├── spy_equation_fiveeyes.yar │ │ │ ├── spy_querty_fiveeyes.yar │ │ │ ├── spy_regin_fiveeyes.yar │ │ │ ├── thor-hacktools.yar │ │ │ ├── thor-webshells.yar │ │ │ ├── thor_inverse_matches.yar │ │ │ └── threat_lenovo_superfish.yar │ └── Bro │ │ ├── __init__.py │ │ ├── api.yaml │ │ ├── app.py │ │ └── requirements.txt ├── bro2map.mp4 ├── dnsWalkoffBroAnalysis.json ├── httpWalkoffBroAnalysis.json ├── interfaces │ └── Bro │ │ ├── __init__.py │ │ ├── brolog.py │ │ └── interface │ │ ├── static │ │ ├── index.css │ │ ├── lib │ │ │ ├── bootstrap-table │ │ │ │ ├── bootstrap-table.min.css │ │ │ │ └── bootstrap-table.min.js │ │ │ ├── bootstrap │ │ │ │ ├── CHANGELOG.md │ │ │ │ ├── Gruntfile.js │ │ │ │ ├── LICENSE │ │ │ │ ├── README.md │ │ │ │ ├── dist │ │ │ │ │ ├── css │ │ │ │ │ │ ├── bootstrap-theme.css │ │ │ │ │ │ ├── bootstrap-theme.css.map │ │ │ │ │ │ ├── bootstrap-theme.min.css │ │ │ │ │ │ ├── bootstrap-theme.min.css.map │ │ │ │ │ │ ├── bootstrap.css │ │ │ │ │ │ ├── bootstrap.css.map │ │ │ │ │ │ ├── bootstrap.min.css │ │ │ │ │ │ └── bootstrap.min.css.map │ │ │ │ │ ├── fonts │ │ │ │ │ │ ├── glyphicons-halflings-regular.eot │ │ │ │ │ │ ├── glyphicons-halflings-regular.svg │ │ │ │ │ │ ├── glyphicons-halflings-regular.ttf │ │ │ │ │ │ ├── glyphicons-halflings-regular.woff │ │ │ │ │ │ └── glyphicons-halflings-regular.woff2 │ │ │ │ │ └── js │ │ │ │ │ │ ├── bootstrap.js │ │ │ │ │ │ ├── bootstrap.min.js │ │ │ │ │ │ └── npm.js │ │ │ │ ├── fonts │ │ │ │ │ ├── glyphicons-halflings-regular.eot │ │ │ │ │ ├── glyphicons-halflings-regular.svg │ │ │ │ │ ├── glyphicons-halflings-regular.ttf │ │ │ │ │ ├── glyphicons-halflings-regular.woff │ │ │ │ │ └── glyphicons-halflings-regular.woff2 │ │ │ │ ├── grunt │ │ │ │ │ ├── .jshintrc │ │ │ │ │ ├── bs-commonjs-generator.js │ │ │ │ │ ├── bs-glyphicons-data-generator.js │ │ │ │ │ ├── bs-lessdoc-parser.js │ │ │ │ │ ├── bs-raw-files-generator.js │ │ │ │ │ ├── change-version.js │ │ │ │ │ ├── configBridge.json │ │ │ │ │ ├── npm-shrinkwrap.json │ │ │ │ │ └── sauce_browsers.yml │ │ │ │ ├── js │ │ │ │ │ ├── affix.js │ │ │ │ │ ├── alert.js │ │ │ │ │ ├── button.js │ │ │ │ │ ├── carousel.js │ │ │ │ │ ├── collapse.js │ │ │ │ │ ├── dropdown.js │ │ │ │ │ ├── modal.js │ │ │ │ │ ├── popover.js │ │ │ │ │ ├── scrollspy.js │ │ │ │ │ ├── tab.js │ │ │ │ │ ├── tooltip.js │ │ │ │ │ └── transition.js │ │ │ │ ├── less │ │ │ │ │ ├── alerts.less │ │ │ │ │ ├── badges.less │ │ │ │ │ ├── bootstrap.less │ │ │ │ │ ├── breadcrumbs.less │ │ │ │ │ ├── button-groups.less │ │ │ │ │ ├── buttons.less │ │ │ │ │ ├── carousel.less │ │ │ │ │ ├── close.less │ │ │ │ │ ├── code.less │ │ │ │ │ ├── component-animations.less │ │ │ │ │ ├── dropdowns.less │ │ │ │ │ ├── forms.less │ │ │ │ │ ├── glyphicons.less │ │ │ │ │ ├── grid.less │ │ │ │ │ ├── input-groups.less │ │ │ │ │ ├── jumbotron.less │ │ │ │ │ ├── labels.less │ │ │ │ │ ├── list-group.less │ │ │ │ │ ├── media.less │ │ │ │ │ ├── mixins.less │ │ │ │ │ ├── mixins │ │ │ │ │ │ ├── alerts.less │ │ │ │ │ │ ├── background-variant.less │ │ │ │ │ │ ├── border-radius.less │ │ │ │ │ │ ├── buttons.less │ │ │ │ │ │ ├── center-block.less │ │ │ │ │ │ ├── clearfix.less │ │ │ │ │ │ ├── forms.less │ │ │ │ │ │ ├── gradients.less │ │ │ │ │ │ ├── grid-framework.less │ │ │ │ │ │ ├── grid.less │ │ │ │ │ │ ├── hide-text.less │ │ │ │ │ │ ├── image.less │ │ │ │ │ │ ├── labels.less │ │ │ │ │ │ ├── list-group.less │ │ │ │ │ │ ├── nav-divider.less │ │ │ │ │ │ ├── nav-vertical-align.less │ │ │ │ │ │ ├── opacity.less │ │ │ │ │ │ ├── pagination.less │ │ │ │ │ │ ├── panels.less │ │ │ │ │ │ ├── progress-bar.less │ │ │ │ │ │ ├── reset-filter.less │ │ │ │ │ │ ├── reset-text.less │ │ │ │ │ │ ├── resize.less │ │ │ │ │ │ ├── responsive-visibility.less │ │ │ │ │ │ ├── size.less │ │ │ │ │ │ ├── tab-focus.less │ │ │ │ │ │ ├── table-row.less │ │ │ │ │ │ ├── text-emphasis.less │ │ │ │ │ │ ├── text-overflow.less │ │ │ │ │ │ └── vendor-prefixes.less │ │ │ │ │ ├── modals.less │ │ │ │ │ ├── navbar.less │ │ │ │ │ ├── navs.less │ │ │ │ │ ├── normalize.less │ │ │ │ │ ├── pager.less │ │ │ │ │ ├── pagination.less │ │ │ │ │ ├── panels.less │ │ │ │ │ ├── popovers.less │ │ │ │ │ ├── print.less │ │ │ │ │ ├── progress-bars.less │ │ │ │ │ ├── responsive-embed.less │ │ │ │ │ ├── responsive-utilities.less │ │ │ │ │ ├── scaffolding.less │ │ │ │ │ ├── tables.less │ │ │ │ │ ├── theme.less │ │ │ │ │ ├── thumbnails.less │ │ │ │ │ ├── tooltip.less │ │ │ │ │ ├── type.less │ │ │ │ │ ├── utilities.less │ │ │ │ │ ├── variables.less │ │ │ │ │ └── wells.less │ │ │ │ └── package.json │ │ │ ├── c3 │ │ │ │ ├── c3.min.css │ │ │ │ └── c3.min.js │ │ │ ├── d3-hive │ │ │ │ └── d3.hive.min.js │ │ │ ├── d3 │ │ │ │ └── d3.min.js │ │ │ ├── d3v4 │ │ │ │ ├── .npmignore │ │ │ │ ├── API.md │ │ │ │ ├── CHANGES.md │ │ │ │ ├── ISSUE_TEMPLATE.md │ │ │ │ ├── LICENSE │ │ │ │ ├── README.md │ │ │ │ ├── build │ │ │ │ │ ├── d3.js │ │ │ │ │ ├── d3.min.js │ │ │ │ │ ├── d3.node.js │ │ │ │ │ └── package.js │ │ │ │ ├── img │ │ │ │ │ ├── axis-v3.png │ │ │ │ │ ├── axis-v4.png │ │ │ │ │ ├── pack-v3.png │ │ │ │ │ ├── pack-v4.png │ │ │ │ │ └── stratify.png │ │ │ │ ├── index.js │ │ │ │ ├── package.json │ │ │ │ ├── rollup.config.js │ │ │ │ └── rollup.node.js │ │ │ ├── jquery │ │ │ │ ├── AUTHORS.txt │ │ │ │ ├── LICENSE.txt │ │ │ │ ├── README.md │ │ │ │ ├── bower.json │ │ │ │ ├── dist │ │ │ │ │ ├── core.js │ │ │ │ │ ├── jquery.js │ │ │ │ │ ├── jquery.min.js │ │ │ │ │ ├── jquery.min.map │ │ │ │ │ ├── jquery.slim.js │ │ │ │ │ ├── jquery.slim.min.js │ │ │ │ │ └── jquery.slim.min.map │ │ │ │ ├── external │ │ │ │ │ └── sizzle │ │ │ │ │ │ ├── LICENSE.txt │ │ │ │ │ │ └── dist │ │ │ │ │ │ ├── sizzle.js │ │ │ │ │ │ ├── sizzle.min.js │ │ │ │ │ │ └── sizzle.min.map │ │ │ │ ├── package.json │ │ │ │ └── src │ │ │ │ │ ├── .eslintrc.json │ │ │ │ │ ├── ajax.js │ │ │ │ │ ├── ajax │ │ │ │ │ ├── jsonp.js │ │ │ │ │ ├── load.js │ │ │ │ │ ├── parseXML.js │ │ │ │ │ ├── script.js │ │ │ │ │ ├── var │ │ │ │ │ │ ├── location.js │ │ │ │ │ │ ├── nonce.js │ │ │ │ │ │ └── rquery.js │ │ │ │ │ └── xhr.js │ │ │ │ │ ├── attributes.js │ │ │ │ │ ├── attributes │ │ │ │ │ ├── attr.js │ │ │ │ │ ├── classes.js │ │ │ │ │ ├── prop.js │ │ │ │ │ ├── support.js │ │ │ │ │ └── val.js │ │ │ │ │ ├── callbacks.js │ │ │ │ │ ├── core.js │ │ │ │ │ ├── core │ │ │ │ │ ├── DOMEval.js │ │ │ │ │ ├── access.js │ │ │ │ │ ├── init.js │ │ │ │ │ ├── nodeName.js │ │ │ │ │ ├── parseHTML.js │ │ │ │ │ ├── ready-no-deferred.js │ │ │ │ │ ├── ready.js │ │ │ │ │ ├── readyException.js │ │ │ │ │ ├── stripAndCollapse.js │ │ │ │ │ ├── support.js │ │ │ │ │ └── var │ │ │ │ │ │ └── rsingleTag.js │ │ │ │ │ ├── css.js │ │ │ │ │ ├── css │ │ │ │ │ ├── addGetHookIf.js │ │ │ │ │ ├── adjustCSS.js │ │ │ │ │ ├── curCSS.js │ │ │ │ │ ├── hiddenVisibleSelectors.js │ │ │ │ │ ├── showHide.js │ │ │ │ │ ├── support.js │ │ │ │ │ └── var │ │ │ │ │ │ ├── cssExpand.js │ │ │ │ │ │ ├── getStyles.js │ │ │ │ │ │ ├── isHiddenWithinTree.js │ │ │ │ │ │ ├── rmargin.js │ │ │ │ │ │ ├── rnumnonpx.js │ │ │ │ │ │ └── swap.js │ │ │ │ │ ├── data.js │ │ │ │ │ ├── data │ │ │ │ │ ├── Data.js │ │ │ │ │ └── var │ │ │ │ │ │ ├── acceptData.js │ │ │ │ │ │ ├── dataPriv.js │ │ │ │ │ │ └── dataUser.js │ │ │ │ │ ├── deferred.js │ │ │ │ │ ├── deferred │ │ │ │ │ └── exceptionHook.js │ │ │ │ │ ├── deprecated.js │ │ │ │ │ ├── dimensions.js │ │ │ │ │ ├── effects.js │ │ │ │ │ ├── effects │ │ │ │ │ ├── Tween.js │ │ │ │ │ └── animatedSelector.js │ │ │ │ │ ├── event.js │ │ │ │ │ ├── event │ │ │ │ │ ├── ajax.js │ │ │ │ │ ├── alias.js │ │ │ │ │ ├── focusin.js │ │ │ │ │ ├── support.js │ │ │ │ │ └── trigger.js │ │ │ │ │ ├── exports │ │ │ │ │ ├── amd.js │ │ │ │ │ └── global.js │ │ │ │ │ ├── jquery.js │ │ │ │ │ ├── manipulation.js │ │ │ │ │ ├── manipulation │ │ │ │ │ ├── _evalUrl.js │ │ │ │ │ ├── buildFragment.js │ │ │ │ │ ├── getAll.js │ │ │ │ │ ├── setGlobalEval.js │ │ │ │ │ ├── support.js │ │ │ │ │ ├── var │ │ │ │ │ │ ├── rcheckableType.js │ │ │ │ │ │ ├── rscriptType.js │ │ │ │ │ │ └── rtagName.js │ │ │ │ │ └── wrapMap.js │ │ │ │ │ ├── offset.js │ │ │ │ │ ├── queue.js │ │ │ │ │ ├── queue │ │ │ │ │ └── delay.js │ │ │ │ │ ├── selector-native.js │ │ │ │ │ ├── selector-sizzle.js │ │ │ │ │ ├── selector.js │ │ │ │ │ ├── serialize.js │ │ │ │ │ ├── traversing.js │ │ │ │ │ ├── traversing │ │ │ │ │ ├── findFilter.js │ │ │ │ │ └── var │ │ │ │ │ │ ├── dir.js │ │ │ │ │ │ ├── rneedsContext.js │ │ │ │ │ │ └── siblings.js │ │ │ │ │ ├── var │ │ │ │ │ ├── ObjectFunctionString.js │ │ │ │ │ ├── arr.js │ │ │ │ │ ├── class2type.js │ │ │ │ │ ├── concat.js │ │ │ │ │ ├── document.js │ │ │ │ │ ├── documentElement.js │ │ │ │ │ ├── fnToString.js │ │ │ │ │ ├── getProto.js │ │ │ │ │ ├── hasOwn.js │ │ │ │ │ ├── indexOf.js │ │ │ │ │ ├── pnum.js │ │ │ │ │ ├── push.js │ │ │ │ │ ├── rcssNum.js │ │ │ │ │ ├── rnothtmlwhite.js │ │ │ │ │ ├── slice.js │ │ │ │ │ ├── support.js │ │ │ │ │ └── toString.js │ │ │ │ │ └── wrap.js │ │ │ └── svgpanzoom │ │ │ │ └── svg-pan-zoom.js │ │ └── visualize.js │ │ └── templates │ │ └── index.html ├── pcaps │ ├── 4SICS-GeekLounge-151021 │ │ ├── .state │ │ │ └── state.bst │ │ ├── conn.log │ │ ├── dns.log │ │ ├── dpd.log │ │ ├── files.log │ │ ├── http.log │ │ ├── kerberos.log │ │ ├── modbus.log │ │ ├── packet_filter.log │ │ ├── ssh.log │ │ ├── ssl.log │ │ ├── weird.log │ │ └── x509.log │ └── modified_from_source.txt ├── readme_bro.md ├── walkoffBroWhitelist.txt └── workflows │ └── Bro.playbook ├── nmap-openvas_interface_demo ├── WalkoffDemoGraph.json ├── apps │ ├── Nmap │ │ ├── __init__.py │ │ ├── api.yaml │ │ ├── main.py │ │ └── requirements.txt │ └── OpenVAS │ │ ├── __init__.py │ │ ├── api.yaml │ │ ├── app.py │ │ ├── goxparse │ │ ├── csvfile.csv │ │ ├── goxparse.py │ │ └── readme.md │ │ ├── pvsl │ │ ├── LICENSE │ │ ├── README.rst │ │ ├── __init__.py │ │ ├── client.py │ │ ├── exceptions.py │ │ ├── response.py │ │ └── utils.py │ │ └── requirements.txt ├── interfaces │ └── nmapopenvas │ │ ├── __init__.py │ │ ├── graphs.py │ │ └── interface │ │ ├── static │ │ ├── index.css │ │ ├── lib │ │ │ ├── bootstrap-table │ │ │ │ ├── bootstrap-table.min.css │ │ │ │ └── bootstrap-table.min.js │ │ │ ├── bootstrap │ │ │ │ ├── CHANGELOG.md │ │ │ │ ├── Gruntfile.js │ │ │ │ ├── LICENSE │ │ │ │ ├── README.md │ │ │ │ ├── dist │ │ │ │ │ ├── css │ │ │ │ │ │ ├── bootstrap-theme.css │ │ │ │ │ │ ├── bootstrap-theme.css.map │ │ │ │ │ │ ├── bootstrap-theme.min.css │ │ │ │ │ │ ├── bootstrap-theme.min.css.map │ │ │ │ │ │ ├── bootstrap.css │ │ │ │ │ │ ├── bootstrap.css.map │ │ │ │ │ │ ├── bootstrap.min.css │ │ │ │ │ │ └── bootstrap.min.css.map │ │ │ │ │ ├── fonts │ │ │ │ │ │ ├── glyphicons-halflings-regular.eot │ │ │ │ │ │ ├── glyphicons-halflings-regular.svg │ │ │ │ │ │ ├── glyphicons-halflings-regular.ttf │ │ │ │ │ │ ├── glyphicons-halflings-regular.woff │ │ │ │ │ │ └── glyphicons-halflings-regular.woff2 │ │ │ │ │ └── js │ │ │ │ │ │ ├── bootstrap.js │ │ │ │ │ │ ├── bootstrap.min.js │ │ │ │ │ │ └── npm.js │ │ │ │ ├── fonts │ │ │ │ │ ├── glyphicons-halflings-regular.eot │ │ │ │ │ ├── glyphicons-halflings-regular.svg │ │ │ │ │ ├── glyphicons-halflings-regular.ttf │ │ │ │ │ ├── glyphicons-halflings-regular.woff │ │ │ │ │ └── glyphicons-halflings-regular.woff2 │ │ │ │ ├── grunt │ │ │ │ │ ├── .jshintrc │ │ │ │ │ ├── bs-commonjs-generator.js │ │ │ │ │ ├── bs-glyphicons-data-generator.js │ │ │ │ │ ├── bs-lessdoc-parser.js │ │ │ │ │ ├── bs-raw-files-generator.js │ │ │ │ │ ├── change-version.js │ │ │ │ │ ├── configBridge.json │ │ │ │ │ ├── npm-shrinkwrap.json │ │ │ │ │ └── sauce_browsers.yml │ │ │ │ ├── js │ │ │ │ │ ├── affix.js │ │ │ │ │ ├── alert.js │ │ │ │ │ ├── button.js │ │ │ │ │ ├── carousel.js │ │ │ │ │ ├── collapse.js │ │ │ │ │ ├── dropdown.js │ │ │ │ │ ├── modal.js │ │ │ │ │ ├── popover.js │ │ │ │ │ ├── scrollspy.js │ │ │ │ │ ├── tab.js │ │ │ │ │ ├── tooltip.js │ │ │ │ │ └── transition.js │ │ │ │ ├── less │ │ │ │ │ ├── alerts.less │ │ │ │ │ ├── badges.less │ │ │ │ │ ├── bootstrap.less │ │ │ │ │ ├── breadcrumbs.less │ │ │ │ │ ├── button-groups.less │ │ │ │ │ ├── buttons.less │ │ │ │ │ ├── carousel.less │ │ │ │ │ ├── close.less │ │ │ │ │ ├── code.less │ │ │ │ │ ├── component-animations.less │ │ │ │ │ ├── dropdowns.less │ │ │ │ │ ├── forms.less │ │ │ │ │ ├── glyphicons.less │ │ │ │ │ ├── grid.less │ │ │ │ │ ├── input-groups.less │ │ │ │ │ ├── jumbotron.less │ │ │ │ │ ├── labels.less │ │ │ │ │ ├── list-group.less │ │ │ │ │ ├── media.less │ │ │ │ │ ├── mixins.less │ │ │ │ │ ├── mixins │ │ │ │ │ │ ├── alerts.less │ │ │ │ │ │ ├── background-variant.less │ │ │ │ │ │ ├── border-radius.less │ │ │ │ │ │ ├── buttons.less │ │ │ │ │ │ ├── center-block.less │ │ │ │ │ │ ├── clearfix.less │ │ │ │ │ │ ├── forms.less │ │ │ │ │ │ ├── gradients.less │ │ │ │ │ │ ├── grid-framework.less │ │ │ │ │ │ ├── grid.less │ │ │ │ │ │ ├── hide-text.less │ │ │ │ │ │ ├── image.less │ │ │ │ │ │ ├── labels.less │ │ │ │ │ │ ├── list-group.less │ │ │ │ │ │ ├── nav-divider.less │ │ │ │ │ │ ├── nav-vertical-align.less │ │ │ │ │ │ ├── opacity.less │ │ │ │ │ │ ├── pagination.less │ │ │ │ │ │ ├── panels.less │ │ │ │ │ │ ├── progress-bar.less │ │ │ │ │ │ ├── reset-filter.less │ │ │ │ │ │ ├── reset-text.less │ │ │ │ │ │ ├── resize.less │ │ │ │ │ │ ├── responsive-visibility.less │ │ │ │ │ │ ├── size.less │ │ │ │ │ │ ├── tab-focus.less │ │ │ │ │ │ ├── table-row.less │ │ │ │ │ │ ├── text-emphasis.less │ │ │ │ │ │ ├── text-overflow.less │ │ │ │ │ │ └── vendor-prefixes.less │ │ │ │ │ ├── modals.less │ │ │ │ │ ├── navbar.less │ │ │ │ │ ├── navs.less │ │ │ │ │ ├── normalize.less │ │ │ │ │ ├── pager.less │ │ │ │ │ ├── pagination.less │ │ │ │ │ ├── panels.less │ │ │ │ │ ├── popovers.less │ │ │ │ │ ├── print.less │ │ │ │ │ ├── progress-bars.less │ │ │ │ │ ├── responsive-embed.less │ │ │ │ │ ├── responsive-utilities.less │ │ │ │ │ ├── scaffolding.less │ │ │ │ │ ├── tables.less │ │ │ │ │ ├── theme.less │ │ │ │ │ ├── thumbnails.less │ │ │ │ │ ├── tooltip.less │ │ │ │ │ ├── type.less │ │ │ │ │ ├── utilities.less │ │ │ │ │ ├── variables.less │ │ │ │ │ └── wells.less │ │ │ │ └── package.json │ │ │ ├── d3 │ │ │ │ ├── .npmignore │ │ │ │ ├── API.md │ │ │ │ ├── CHANGES.md │ │ │ │ ├── ISSUE_TEMPLATE.md │ │ │ │ ├── LICENSE │ │ │ │ ├── README.md │ │ │ │ ├── build │ │ │ │ │ ├── d3.js │ │ │ │ │ ├── d3.min.js │ │ │ │ │ ├── d3.node.js │ │ │ │ │ └── package.js │ │ │ │ ├── img │ │ │ │ │ ├── axis-v3.png │ │ │ │ │ ├── axis-v4.png │ │ │ │ │ ├── pack-v3.png │ │ │ │ │ ├── pack-v4.png │ │ │ │ │ └── stratify.png │ │ │ │ ├── index.js │ │ │ │ ├── package.json │ │ │ │ ├── rollup.config.js │ │ │ │ └── rollup.node.js │ │ │ └── jquery │ │ │ │ ├── AUTHORS.txt │ │ │ │ ├── LICENSE.txt │ │ │ │ ├── README.md │ │ │ │ ├── bower.json │ │ │ │ ├── dist │ │ │ │ ├── core.js │ │ │ │ ├── jquery.js │ │ │ │ ├── jquery.min.js │ │ │ │ ├── jquery.min.map │ │ │ │ ├── jquery.slim.js │ │ │ │ ├── jquery.slim.min.js │ │ │ │ └── jquery.slim.min.map │ │ │ │ ├── external │ │ │ │ └── sizzle │ │ │ │ │ ├── LICENSE.txt │ │ │ │ │ └── dist │ │ │ │ │ ├── sizzle.js │ │ │ │ │ ├── sizzle.min.js │ │ │ │ │ └── sizzle.min.map │ │ │ │ ├── package.json │ │ │ │ └── src │ │ │ │ ├── .eslintrc.json │ │ │ │ ├── ajax.js │ │ │ │ ├── ajax │ │ │ │ ├── jsonp.js │ │ │ │ ├── load.js │ │ │ │ ├── parseXML.js │ │ │ │ ├── script.js │ │ │ │ ├── var │ │ │ │ │ ├── location.js │ │ │ │ │ ├── nonce.js │ │ │ │ │ └── rquery.js │ │ │ │ └── xhr.js │ │ │ │ ├── attributes.js │ │ │ │ ├── attributes │ │ │ │ ├── attr.js │ │ │ │ ├── classes.js │ │ │ │ ├── prop.js │ │ │ │ ├── support.js │ │ │ │ └── val.js │ │ │ │ ├── callbacks.js │ │ │ │ ├── core.js │ │ │ │ ├── core │ │ │ │ ├── DOMEval.js │ │ │ │ ├── access.js │ │ │ │ ├── init.js │ │ │ │ ├── nodeName.js │ │ │ │ ├── parseHTML.js │ │ │ │ ├── ready-no-deferred.js │ │ │ │ ├── ready.js │ │ │ │ ├── readyException.js │ │ │ │ ├── stripAndCollapse.js │ │ │ │ ├── support.js │ │ │ │ └── var │ │ │ │ │ └── rsingleTag.js │ │ │ │ ├── css.js │ │ │ │ ├── css │ │ │ │ ├── addGetHookIf.js │ │ │ │ ├── adjustCSS.js │ │ │ │ ├── curCSS.js │ │ │ │ ├── hiddenVisibleSelectors.js │ │ │ │ ├── showHide.js │ │ │ │ ├── support.js │ │ │ │ └── var │ │ │ │ │ ├── cssExpand.js │ │ │ │ │ ├── getStyles.js │ │ │ │ │ ├── isHiddenWithinTree.js │ │ │ │ │ ├── rmargin.js │ │ │ │ │ ├── rnumnonpx.js │ │ │ │ │ └── swap.js │ │ │ │ ├── data.js │ │ │ │ ├── data │ │ │ │ ├── Data.js │ │ │ │ └── var │ │ │ │ │ ├── acceptData.js │ │ │ │ │ ├── dataPriv.js │ │ │ │ │ └── dataUser.js │ │ │ │ ├── deferred.js │ │ │ │ ├── deferred │ │ │ │ └── exceptionHook.js │ │ │ │ ├── deprecated.js │ │ │ │ ├── dimensions.js │ │ │ │ ├── effects.js │ │ │ │ ├── effects │ │ │ │ ├── Tween.js │ │ │ │ └── animatedSelector.js │ │ │ │ ├── event.js │ │ │ │ ├── event │ │ │ │ ├── ajax.js │ │ │ │ ├── alias.js │ │ │ │ ├── focusin.js │ │ │ │ ├── support.js │ │ │ │ └── trigger.js │ │ │ │ ├── exports │ │ │ │ ├── amd.js │ │ │ │ └── global.js │ │ │ │ ├── jquery.js │ │ │ │ ├── manipulation.js │ │ │ │ ├── manipulation │ │ │ │ ├── _evalUrl.js │ │ │ │ ├── buildFragment.js │ │ │ │ ├── getAll.js │ │ │ │ ├── setGlobalEval.js │ │ │ │ ├── support.js │ │ │ │ ├── var │ │ │ │ │ ├── rcheckableType.js │ │ │ │ │ ├── rscriptType.js │ │ │ │ │ └── rtagName.js │ │ │ │ └── wrapMap.js │ │ │ │ ├── offset.js │ │ │ │ ├── queue.js │ │ │ │ ├── queue │ │ │ │ └── delay.js │ │ │ │ ├── selector-native.js │ │ │ │ ├── selector-sizzle.js │ │ │ │ ├── selector.js │ │ │ │ ├── serialize.js │ │ │ │ ├── traversing.js │ │ │ │ ├── traversing │ │ │ │ ├── findFilter.js │ │ │ │ └── var │ │ │ │ │ ├── dir.js │ │ │ │ │ ├── rneedsContext.js │ │ │ │ │ └── siblings.js │ │ │ │ ├── var │ │ │ │ ├── ObjectFunctionString.js │ │ │ │ ├── arr.js │ │ │ │ ├── class2type.js │ │ │ │ ├── concat.js │ │ │ │ ├── document.js │ │ │ │ ├── documentElement.js │ │ │ │ ├── fnToString.js │ │ │ │ ├── getProto.js │ │ │ │ ├── hasOwn.js │ │ │ │ ├── indexOf.js │ │ │ │ ├── pnum.js │ │ │ │ ├── push.js │ │ │ │ ├── rcssNum.js │ │ │ │ ├── rnothtmlwhite.js │ │ │ │ ├── slice.js │ │ │ │ ├── support.js │ │ │ │ └── toString.js │ │ │ │ └── wrap.js │ │ └── visualize.js │ │ └── templates │ │ └── index.html └── workflows │ └── InterfaceDemo.playbook └── readme.md /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/.gitignore -------------------------------------------------------------------------------- /ARDrone/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /ARDrone/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/ARDrone/api.yaml -------------------------------------------------------------------------------- /ARDrone/libardrone/.gitignore: -------------------------------------------------------------------------------- 1 | *.pyc 2 | -------------------------------------------------------------------------------- /ARDrone/libardrone/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/ARDrone/libardrone/README.md -------------------------------------------------------------------------------- /ARDrone/libardrone/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /ARDrone/libardrone/arnetwork.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/ARDrone/libardrone/arnetwork.py -------------------------------------------------------------------------------- /ARDrone/libardrone/arvideo.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/ARDrone/libardrone/arvideo.py -------------------------------------------------------------------------------- /ARDrone/libardrone/demo.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/ARDrone/libardrone/demo.py -------------------------------------------------------------------------------- /ARDrone/libardrone/libardrone.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/ARDrone/libardrone/libardrone.py -------------------------------------------------------------------------------- /ARDrone/libardrone/test_libardrone.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/ARDrone/libardrone/test_libardrone.py -------------------------------------------------------------------------------- /ARDrone/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/ARDrone/main.py -------------------------------------------------------------------------------- /ARDrone/requirements.txt: -------------------------------------------------------------------------------- 1 | pyardrone -------------------------------------------------------------------------------- /AlienVault/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /AlienVault/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/api.yaml -------------------------------------------------------------------------------- /AlienVault/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/app.py -------------------------------------------------------------------------------- /AlienVault/requirements.txt: -------------------------------------------------------------------------------- 1 | OTXv2 2 | -------------------------------------------------------------------------------- /AlienVault/signature-base/.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/.gitignore -------------------------------------------------------------------------------- /AlienVault/signature-base/.travis.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/.travis.yml -------------------------------------------------------------------------------- /AlienVault/signature-base/LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/LICENSE -------------------------------------------------------------------------------- /AlienVault/signature-base/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/README.md -------------------------------------------------------------------------------- /AlienVault/signature-base/build-rules.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/build-rules.py -------------------------------------------------------------------------------- /AlienVault/signature-base/iocs/README.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/iocs/README.txt -------------------------------------------------------------------------------- /AlienVault/signature-base/iocs/otx-c2-iocs-ipv4.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/iocs/otx-c2-iocs-ipv4.txt -------------------------------------------------------------------------------- /AlienVault/signature-base/iocs/otx-c2-iocs-ipv6.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /AlienVault/signature-base/iocs/otx-c2-iocs.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/iocs/otx-c2-iocs.txt -------------------------------------------------------------------------------- /AlienVault/signature-base/iocs/otx-filename-iocs.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/iocs/otx-filename-iocs.txt -------------------------------------------------------------------------------- /AlienVault/signature-base/iocs/otx-hash-iocs.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/iocs/otx-hash-iocs.txt -------------------------------------------------------------------------------- /AlienVault/signature-base/makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/makefile -------------------------------------------------------------------------------- /AlienVault/signature-base/misc/file-type-signatures.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/misc/file-type-signatures.txt -------------------------------------------------------------------------------- /AlienVault/signature-base/threatintel/LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/threatintel/LICENSE -------------------------------------------------------------------------------- /AlienVault/signature-base/threatintel/get-misp-iocs.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/threatintel/get-misp-iocs.exe -------------------------------------------------------------------------------- /AlienVault/signature-base/threatintel/get-misp-iocs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/threatintel/get-misp-iocs.py -------------------------------------------------------------------------------- /AlienVault/signature-base/threatintel/get-otx-iocs.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/threatintel/get-otx-iocs.exe -------------------------------------------------------------------------------- /AlienVault/signature-base/threatintel/get-otx-iocs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/threatintel/get-otx-iocs.py -------------------------------------------------------------------------------- /AlienVault/signature-base/vendor/yara/airbnb_binaryalert.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/vendor/yara/airbnb_binaryalert.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_agent_btz.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_agent_btz.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_alienspy_rat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_alienspy_rat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_apt10.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_apt10.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_apt12_malware.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_apt12_malware.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_apt17_mal_sep17.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_apt17_mal_sep17.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_apt17_malware.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_apt17_malware.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_apt19.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_apt19.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_apt28.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_apt28.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_apt29_grizzly_steppe.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_apt29_grizzly_steppe.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_apt30_backspace.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_apt30_backspace.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_apt34.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_apt34.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_apt6_malware.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_apt6_malware.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_backdoor_ssh_python.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_backdoor_ssh_python.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_backspace.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_backspace.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_beepservice.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_beepservice.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_between-hk-and-burma.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_between-hk-and-burma.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_blackenergy.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_blackenergy.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_blackenergy_installer.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_blackenergy_installer.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_bluetermite_emdivi.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_bluetermite_emdivi.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_bronze_butler.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_bronze_butler.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_buckeye.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_buckeye.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_carbon_paper_turla.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_carbon_paper_turla.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_casper.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_casper.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_cheshirecat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_cheshirecat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_cloudduke.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_cloudduke.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_cmstar.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_cmstar.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_cn_pp_zerot.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_cn_pp_zerot.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_codoso.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_codoso.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_coreimpact_agent.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_coreimpact_agent.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_crash_override.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_crash_override.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_cve2015_5119.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_cve2015_5119.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_danti_svcmondr.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_danti_svcmondr.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_darkcaracal.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_darkcaracal.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_deeppanda.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_deeppanda.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_derusbi.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_derusbi.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_dragonfly.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_dragonfly.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_dubnium.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_dubnium.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_duqu2.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_duqu2.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_emissary.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_emissary.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_eqgrp.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_eqgrp.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_eqgrp_apr17.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_eqgrp_apr17.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_eternalblue_non_wannacry.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_eternalblue_non_wannacry.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_fakem_backdoor.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_fakem_backdoor.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_fancybear_dnc.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_fancybear_dnc.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_fidelis_phishing_plain_sight.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_fidelis_phishing_plain_sight.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_fin7_backdoor.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_fin7_backdoor.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_foudre.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_foudre.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_four_element_sword.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_four_element_sword.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_freemilk.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_freemilk.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_furtim.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_furtim.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_fvey_shadowbroker_dec16.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_fvey_shadowbroker_dec16.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_fvey_shadowbroker_jan17.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_fvey_shadowbroker_jan17.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_ghostdragon_gh0st_rat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_ghostdragon_gh0st_rat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_glassRAT.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_glassRAT.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_golddragon.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_golddragon.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_greenbug.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_greenbug.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_grizzlybear_uscert.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_grizzlybear_uscert.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_hackingteam_rules.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_hackingteam_rules.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_ham_tofu_chches.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_ham_tofu_chches.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_hatman.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_hatman.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_hellsing_kaspersky.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_hellsing_kaspersky.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_hidden_cobra.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_hidden_cobra.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_hiddencobra_bankshot.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_hiddencobra_bankshot.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_hizor_rat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_hizor_rat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_hkdoor.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_hkdoor.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_indetectables_rat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_indetectables_rat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_industroyer.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_industroyer.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_inocnation.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_inocnation.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_irongate.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_irongate.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_irontiger.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_irontiger.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_irontiger_trendmicro.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_irontiger_trendmicro.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_ism_rat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_ism_rat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_kaspersky_duqu2.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_kaspersky_duqu2.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_keyboys.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_keyboys.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_keylogger_cn.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_keylogger_cn.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_khrat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_khrat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_korplug_fast.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_korplug_fast.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_laudanum_webshells.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_laudanum_webshells.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_lazarus_dec17.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_lazarus_dec17.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_leviathan.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_leviathan.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_lotusblossom_elise.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_lotusblossom_elise.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_magichound.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_magichound.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_microcin.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_microcin.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_middle_east_talosreport.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_middle_east_talosreport.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_miniasp.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_miniasp.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_minidionis.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_minidionis.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_mofang.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_mofang.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_molerats_jul17.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_molerats_jul17.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_monsoon.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_monsoon.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_moonlightmaze.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_moonlightmaze.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_ms_platinum.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_ms_platinum.yara -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_naikon.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_naikon.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_nanocore_rat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_nanocore_rat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_netwire_rat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_netwire_rat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_oilrig.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_oilrig.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_oilrig_oct17.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_oilrig_oct17.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_oilrig_rgdoor.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_oilrig_rgdoor.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_olympic_destroyer.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_olympic_destroyer.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_onhat_proxy.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_onhat_proxy.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_op_cleaver.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_op_cleaver.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_op_cloudhopper.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_op_cloudhopper.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_passcv.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_passcv.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_passthehashtoolkit.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_passthehashtoolkit.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_plugx.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_plugx.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_poisonivy.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_poisonivy.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_poisonivy_gen3.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_poisonivy_gen3.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_poseidon_group.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_poseidon_group.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_poshspy.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_poshspy.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_prikormka.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_prikormka.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_project_m.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_project_m.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_project_sauron.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_project_sauron.yara -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_project_sauron_extras.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_project_sauron_extras.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_promethium_neodymium.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_promethium_neodymium.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_putterpanda.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_putterpanda.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_quarkspwdump.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_quarkspwdump.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_quasar_rat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_quasar_rat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_quasar_vermin.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_quasar_vermin.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_reaver_sunorcal.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_reaver_sunorcal.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_rehashed_rat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_rehashed_rat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_revenge_rat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_revenge_rat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_rocketkitten_keylogger.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_rocketkitten_keylogger.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_rokrat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_rokrat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_ruag.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_ruag.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_rwmc_powershell_creddump.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_rwmc_powershell_creddump.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_sakula.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_sakula.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_saudi_aramco_phish.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_saudi_aramco_phish.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_scanbox_deeppanda.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_scanbox_deeppanda.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_scarcruft.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_scarcruft.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_seaduke_unit42.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_seaduke_unit42.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_servantshell.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_servantshell.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_shadowpad.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_shadowpad.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_shamoon.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_shamoon.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_shamoon2.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_shamoon2.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_shellcrew_streamex.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_shellcrew_streamex.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_silence.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_silence.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_skeletonkey.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_skeletonkey.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_snaketurla_osx.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_snaketurla_osx.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_snowglobe_babar.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_snowglobe_babar.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_sofacy_dec15.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_sofacy_dec15.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_sofacy_fysbis.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_sofacy_fysbis.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_sofacy_hospitality.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_sofacy_hospitality.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_sofacy_jun16.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_sofacy_jun16.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_sofacy_oct17_camp.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_sofacy_oct17_camp.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_sofacy_xtunnel_bundestag.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_sofacy_xtunnel_bundestag.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_sphinx_moth.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_sphinx_moth.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_stonedrill.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_stonedrill.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_strider.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_strider.yara -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_stuxnet.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_stuxnet.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_suckfly.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_suckfly.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_sysscan.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_sysscan.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_ta17_293A.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_ta17_293A.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_ta17_318A.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_ta17_318A.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_ta17_318B.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_ta17_318B.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_ta459.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_ta459.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_telebots.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_telebots.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_terracotta.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_terracotta.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_terracotta_liudoor.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_terracotta_liudoor.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_threatgroup_3390.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_threatgroup_3390.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_tick_datper.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_tick_datper.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_tidepool.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_tidepool.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_tophat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_tophat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_triton.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_triton.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_turbo_campaign.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_turbo_campaign.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_turla.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_turla.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_turla_gazer.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_turla_gazer.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_turla_neuron.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_turla_neuron.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_uboat_rat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_uboat_rat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_unit78020_malware.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_unit78020_malware.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_uscert_ta17-1117a.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_uscert_ta17-1117a.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_venom_linux_rootkit.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_venom_linux_rootkit.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_volatile_cedar.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_volatile_cedar.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_waterbear.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_waterbear.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_waterbug.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_waterbug.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_webshell_chinachopper.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_webshell_chinachopper.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_wildneutron.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_wildneutron.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_wilted_tulip.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_wilted_tulip.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_win_plugx.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_win_plugx.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_winnti.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_winnti.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_winnti_hdroot.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_winnti_hdroot.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_winnti_ms_report_201701.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_winnti_ms_report_201701.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_woolengoldfish.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_woolengoldfish.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_xrat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_xrat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/apt_zxshell.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/apt_zxshell.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/cn_pentestset_scripts.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/cn_pentestset_scripts.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/cn_pentestset_tools.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/cn_pentestset_tools.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/cn_pentestset_webshells.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/cn_pentestset_webshells.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_andromeda_jun17.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_andromeda_jun17.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_antifw_installrex.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_antifw_installrex.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_bad_patch.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_bad_patch.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_badrabbit.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_badrabbit.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_bernhard_pos.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_bernhard_pos.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_buzus_softpulse.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_buzus_softpulse.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_cmstar.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_cmstar.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_cn_campaign_njrat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_cn_campaign_njrat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_cn_group_btc.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_cn_group_btc.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_cobaltgang.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_cobaltgang.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_corkow_dll.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_corkow_dll.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_credstealer_generic.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_credstealer_generic.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_cryptowall_svg.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_cryptowall_svg.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_dexter_trojan.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_dexter_trojan.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_dridex_xml.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_dridex_xml.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_enfal.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_enfal.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_envrial.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_envrial.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_eternalrocks.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_eternalrocks.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_fareit.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_fareit.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_fireball.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_fireball.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_goldeneye.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_goldeneye.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_hermes_ransom.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_hermes_ransom.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_kasper_oct17.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_kasper_oct17.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_kins_dropper.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_kins_dropper.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_kr_malware.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_kr_malware.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_kraken_bot1.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_kraken_bot1.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_kriskynote.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_kriskynote.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_locky.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_locky.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_malumpos.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_malumpos.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_malware_generic.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_malware_generic.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_malware_set_oct16.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_malware_set_oct16.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_mikey_trojan.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_mikey_trojan.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_mirai.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_mirai.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_mywscript_dropper.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_mywscript_dropper.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_nkminer.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_nkminer.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_nopetya_jun17.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_nopetya_jun17.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_ole_loadswf_cve_2018_4878.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_ole_loadswf_cve_2018_4878.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_phish_gina_dec15.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_phish_gina_dec15.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_rombertik_carbongrabber.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_rombertik_carbongrabber.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_shifu_trojan.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_shifu_trojan.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_snarasite.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_snarasite.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_teledoor.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_teledoor.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_upatre_oct15.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_upatre_oct15.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_wannacry.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_wannacry.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/crime_zeus_panda.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/crime_zeus_panda.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/exploit_cve_2015_1674.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/exploit_cve_2015_1674.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/exploit_cve_2015_1701.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/exploit_cve_2015_1701.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/exploit_cve_2015_2426.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/exploit_cve_2015_2426.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/exploit_cve_2015_2545.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/exploit_cve_2015_2545.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/exploit_cve_2017_11882.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/exploit_cve_2017_11882.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/exploit_cve_2017_8759.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/exploit_cve_2017_8759.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/exploit_cve_2017_9800.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/exploit_cve_2017_9800.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/exploit_cve_2018_0802.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/exploit_cve_2018_0802.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/exploit_rtf_ole2link.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/exploit_rtf_ole2link.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/exploit_uac_elevators.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/exploit_uac_elevators.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_ace_with_exe.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_ace_with_exe.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_armitage.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_armitage.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_b374k_extra.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_b374k_extra.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_case_anomalies.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_case_anomalies.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_chaos_payload.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_chaos_payload.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_cn_hacktool_scripts.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_cn_hacktool_scripts.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_cn_hacktools.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_cn_hacktools.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_cn_webshells.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_cn_webshells.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_crunchrat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_crunchrat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_dde_in_office_docs.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_dde_in_office_docs.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_deviceguard_evasion.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_deviceguard_evasion.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_empire.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_empire.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_enigma_protector.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_enigma_protector.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_faked_versions.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_faked_versions.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_floxif.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_floxif.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_gen_cactustorch.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_gen_cactustorch.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_gpp_cpassword.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_gpp_cpassword.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_hawkeye.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_hawkeye.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_hta_anomalies.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_hta_anomalies.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_impacket_tools.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_impacket_tools.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_invoke_mimikatz.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_invoke_mimikatz.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_invoke_psimage.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_invoke_psimage.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_invoke_thehash.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_invoke_thehash.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_javascript_powershell.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_javascript_powershell.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_kerberoast.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_kerberoast.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_kirbi_mimkatz.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_kirbi_mimkatz.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_loaders.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_loaders.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_mal_link.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_mal_link.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_mal_scripts.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_mal_scripts.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_malware_set_qa.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_malware_set_qa.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_merlin_agent.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_merlin_agent.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_metasploit_loader_rsmudge.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_metasploit_loader_rsmudge.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_metasploit_payloads.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_metasploit_payloads.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_mimikittenz.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_mimikittenz.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_mimipenguin.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_mimipenguin.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_nopowershell.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_nopowershell.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_p0wnshell.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_p0wnshell.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_pirpi.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_pirpi.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_powerkatz.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_powerkatz.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_powershdll.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_powershdll.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_powershell_empire.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_powershell_empire.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_powershell_invocation.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_powershell_invocation.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_powershell_obfuscation.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_powershell_obfuscation.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_powershell_suite.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_powershell_suite.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_powershell_susp.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_powershell_susp.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_powershell_toolkit.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_powershell_toolkit.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_ps_empire_eval.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_ps_empire_eval.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_ps_osiris.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_ps_osiris.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_pua.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_pua.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_pupy_rat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_pupy_rat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_rats_malwareconfig.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_rats_malwareconfig.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_recon_keywords.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_recon_keywords.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_redsails.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_redsails.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_regsrv32_issue.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_regsrv32_issue.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_rottenpotato.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_rottenpotato.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_sharpcat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_sharpcat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_susp_strings_in_ole.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_susp_strings_in_ole.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_suspicious_strings.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_suspicious_strings.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_sysinternals_anomaly.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_sysinternals_anomaly.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_tempracer.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_tempracer.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_thumbs_cloaking.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_thumbs_cloaking.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_transformed_strings.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_transformed_strings.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_unspecified_malware.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_unspecified_malware.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_url_to_local_exe.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_url_to_local_exe.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_win_privesc.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_win_privesc.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_winpayloads.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_winpayloads.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_winshells.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_winshells.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_wmi_implant.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_wmi_implant.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_xtreme_rat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_xtreme_rat.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/gen_ysoserial_payloads.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/gen_ysoserial_payloads.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/general_cloaking.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/general_cloaking.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/general_officemacros.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/general_officemacros.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/generic_anomalies.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/generic_anomalies.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/generic_cryptors.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/generic_cryptors.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/generic_dumps.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/generic_dumps.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/generic_exe2hex_payload.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/generic_exe2hex_payload.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/pua_cryptocoin_miner.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/pua_cryptocoin_miner.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/pua_xmrig_monero_miner.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/pua_xmrig_monero_miner.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/pup_lightftp.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/pup_lightftp.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/spy_equation_fiveeyes.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/spy_equation_fiveeyes.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/spy_querty_fiveeyes.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/spy_querty_fiveeyes.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/spy_regin_fiveeyes.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/spy_regin_fiveeyes.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/thor-hacktools.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/thor-hacktools.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/thor-webshells.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/thor-webshells.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/thor_inverse_matches.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/thor_inverse_matches.yar -------------------------------------------------------------------------------- /AlienVault/signature-base/yara/threat_lenovo_superfish.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/AlienVault/signature-base/yara/threat_lenovo_superfish.yar -------------------------------------------------------------------------------- /Bro/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Bro/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Bro/api.yaml -------------------------------------------------------------------------------- /Bro/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Bro/app.py -------------------------------------------------------------------------------- /Bro/requirements.txt: -------------------------------------------------------------------------------- 1 | pandas 2 | networkx 3 | OTXv2 4 | six 5 | ipaddress 6 | parsebrologs 7 | -------------------------------------------------------------------------------- /Converter/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Converter/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Converter/api.yaml -------------------------------------------------------------------------------- /Converter/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Converter/main.py -------------------------------------------------------------------------------- /Converter/requirements.txt: -------------------------------------------------------------------------------- 1 | Pillow -------------------------------------------------------------------------------- /CyberAnalytic/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /CyberAnalytic/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/CyberAnalytic/api.yaml -------------------------------------------------------------------------------- /CyberAnalytic/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/CyberAnalytic/main.py -------------------------------------------------------------------------------- /CyberAnalytic/requirements.txt: -------------------------------------------------------------------------------- 1 | psutil 2 | gevent -------------------------------------------------------------------------------- /CyberChef/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/CyberChef/README.md -------------------------------------------------------------------------------- /CyberChef/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /CyberChef/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/CyberChef/api.yaml -------------------------------------------------------------------------------- /CyberChef/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/CyberChef/app.py -------------------------------------------------------------------------------- /CyberChef/requirements.txt: -------------------------------------------------------------------------------- 1 | Naked -------------------------------------------------------------------------------- /DISCLAIMER.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/DISCLAIMER.md -------------------------------------------------------------------------------- /DailyQuote/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /DailyQuote/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/DailyQuote/api.yaml -------------------------------------------------------------------------------- /DailyQuote/display.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/DailyQuote/display.py -------------------------------------------------------------------------------- /DailyQuote/interface/static/main.js: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /DailyQuote/interface/templates/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/DailyQuote/interface/templates/index.html -------------------------------------------------------------------------------- /DailyQuote/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/DailyQuote/main.py -------------------------------------------------------------------------------- /DailyQuote/requirements.txt: -------------------------------------------------------------------------------- 1 | requests -------------------------------------------------------------------------------- /Elasticsearch/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Elasticsearch/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Elasticsearch/api.yaml -------------------------------------------------------------------------------- /Elasticsearch/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Elasticsearch/app.py -------------------------------------------------------------------------------- /Elasticsearch/requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Elasticsearch/requirements.txt -------------------------------------------------------------------------------- /EmailSender/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /EmailSender/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EmailSender/api.yaml -------------------------------------------------------------------------------- /EmailSender/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EmailSender/main.py -------------------------------------------------------------------------------- /EmailSender/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /EthereumBlockchain/README: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EthereumBlockchain/README -------------------------------------------------------------------------------- /EthereumBlockchain/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /EthereumBlockchain/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EthereumBlockchain/api.yaml -------------------------------------------------------------------------------- /EthereumBlockchain/installDependencies.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EthereumBlockchain/installDependencies.sh -------------------------------------------------------------------------------- /EthereumBlockchain/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EthereumBlockchain/main.py -------------------------------------------------------------------------------- /EthereumBlockchain/package.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EthereumBlockchain/package.json -------------------------------------------------------------------------------- /EthereumBlockchain/password: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /EthereumBlockchain/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /EthereumBlockchain/setup-parameters.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EthereumBlockchain/setup-parameters.sh -------------------------------------------------------------------------------- /EthereumBlockchain/step1-create-accounts.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EthereumBlockchain/step1-create-accounts.sh -------------------------------------------------------------------------------- /EthereumBlockchain/step2-create-genesis-file.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EthereumBlockchain/step2-create-genesis-file.js -------------------------------------------------------------------------------- /EthereumBlockchain/step2-create-genesis-file.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EthereumBlockchain/step2-create-genesis-file.sh -------------------------------------------------------------------------------- /EthereumBlockchain/step2-genesis-template.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EthereumBlockchain/step2-genesis-template.json -------------------------------------------------------------------------------- /EthereumBlockchain/step3-start-miners.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EthereumBlockchain/step3-start-miners.sh -------------------------------------------------------------------------------- /EthereumBlockchain/step4-connect-miners.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EthereumBlockchain/step4-connect-miners.sh -------------------------------------------------------------------------------- /EthereumBlockchain/step5-deploy-contract.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EthereumBlockchain/step5-deploy-contract.js -------------------------------------------------------------------------------- /EthereumBlockchain/step5-deploy-contract.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EthereumBlockchain/step5-deploy-contract.sh -------------------------------------------------------------------------------- /EthereumBlockchain/step5-greeter.sol: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EthereumBlockchain/step5-greeter.sol -------------------------------------------------------------------------------- /EthereumBlockchain/step6-submit-greeting.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EthereumBlockchain/step6-submit-greeting.js -------------------------------------------------------------------------------- /EthereumBlockchain/step6-submit-greeting.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EthereumBlockchain/step6-submit-greeting.sh -------------------------------------------------------------------------------- /EthereumBlockchain/tests/__init__.py: -------------------------------------------------------------------------------- 1 | __all__ = ['testMain'] -------------------------------------------------------------------------------- /EthereumBlockchain/tests/testMain.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/EthereumBlockchain/tests/testMain.py -------------------------------------------------------------------------------- /FacebookUserPost/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /FacebookUserPost/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/FacebookUserPost/api.yaml -------------------------------------------------------------------------------- /FacebookUserPost/display.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/FacebookUserPost/display.py -------------------------------------------------------------------------------- /FacebookUserPost/interface/static/style.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/FacebookUserPost/interface/static/style.css -------------------------------------------------------------------------------- /FacebookUserPost/interface/templates/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/FacebookUserPost/interface/templates/index.html -------------------------------------------------------------------------------- /FacebookUserPost/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/FacebookUserPost/main.py -------------------------------------------------------------------------------- /FacebookUserPost/requirements.txt: -------------------------------------------------------------------------------- 1 | requests -------------------------------------------------------------------------------- /FacebookUserPost/tests/__init__.py: -------------------------------------------------------------------------------- 1 | __all__ = ['testMain'] -------------------------------------------------------------------------------- /FacebookUserPost/tests/testMain.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/FacebookUserPost/tests/testMain.py -------------------------------------------------------------------------------- /FileUtilities/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /FileUtilities/actions.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/FileUtilities/actions.py -------------------------------------------------------------------------------- /FileUtilities/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/FileUtilities/api.yaml -------------------------------------------------------------------------------- /FileUtilities/display.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/FileUtilities/display.py -------------------------------------------------------------------------------- /FileUtilities/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /HelloWorld/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /HelloWorld/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/HelloWorld/api.yaml -------------------------------------------------------------------------------- /HelloWorld/display.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/HelloWorld/display.py -------------------------------------------------------------------------------- /HelloWorld/interface/static/lib/c3/c3.min.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/HelloWorld/interface/static/lib/c3/c3.min.css -------------------------------------------------------------------------------- /HelloWorld/interface/static/lib/c3/c3.min.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/HelloWorld/interface/static/lib/c3/c3.min.js -------------------------------------------------------------------------------- /HelloWorld/interface/static/lib/d3/d3.min.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/HelloWorld/interface/static/lib/d3/d3.min.js -------------------------------------------------------------------------------- /HelloWorld/interface/static/lib/jvectormap/jquery-jvectormap-1.2.2.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/HelloWorld/interface/static/lib/jvectormap/jquery-jvectormap-1.2.2.css -------------------------------------------------------------------------------- /HelloWorld/interface/static/lib/jvectormap/jquery-jvectormap-1.2.2.min.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/HelloWorld/interface/static/lib/jvectormap/jquery-jvectormap-1.2.2.min.js -------------------------------------------------------------------------------- /HelloWorld/interface/static/lib/jvectormap/jquery-jvectormap-world-mill-en.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/HelloWorld/interface/static/lib/jvectormap/jquery-jvectormap-world-mill-en.js -------------------------------------------------------------------------------- /HelloWorld/interface/static/main.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/HelloWorld/interface/static/main.js -------------------------------------------------------------------------------- /HelloWorld/interface/templates/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/HelloWorld/interface/templates/index.html -------------------------------------------------------------------------------- /HelloWorld/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/HelloWorld/main.py -------------------------------------------------------------------------------- /HelloWorld/requirements.txt: -------------------------------------------------------------------------------- 1 | markdown -------------------------------------------------------------------------------- /HelloWorld/widgets/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /HelloWorld/widgets/testWidget/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /HelloWorld/widgets/testWidget/display.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/HelloWorld/widgets/testWidget/display.py -------------------------------------------------------------------------------- /HelloWorld/widgets/testWidget/static/main.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/HelloWorld/widgets/testWidget/static/main.js -------------------------------------------------------------------------------- /HelloWorld/widgets/testWidget/templates/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/HelloWorld/widgets/testWidget/templates/index.html -------------------------------------------------------------------------------- /LICENSE.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/LICENSE.md -------------------------------------------------------------------------------- /Lifx/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Lifx/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Lifx/api.yaml -------------------------------------------------------------------------------- /Lifx/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Lifx/main.py -------------------------------------------------------------------------------- /Lifx/requirements.txt: -------------------------------------------------------------------------------- 1 | requests -------------------------------------------------------------------------------- /LinuxShell/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /LinuxShell/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/LinuxShell/api.yaml -------------------------------------------------------------------------------- /LinuxShell/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/LinuxShell/app.py -------------------------------------------------------------------------------- /LinuxShell/requirements.txt: -------------------------------------------------------------------------------- 1 | paramiko -------------------------------------------------------------------------------- /LinuxShell/scripts/test.sh: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | echo "Hello World" | tee Remote1File.txt -------------------------------------------------------------------------------- /NetworkRouting/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /NetworkRouting/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/NetworkRouting/api.yaml -------------------------------------------------------------------------------- /NetworkRouting/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/NetworkRouting/app.py -------------------------------------------------------------------------------- /NetworkRouting/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Nmap/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Nmap/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Nmap/api.yaml -------------------------------------------------------------------------------- /Nmap/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Nmap/main.py -------------------------------------------------------------------------------- /Nmap/requirements.txt: -------------------------------------------------------------------------------- 1 | python-libnmap 2 | networkx -------------------------------------------------------------------------------- /OpenVAS/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /OpenVAS/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/OpenVAS/api.yaml -------------------------------------------------------------------------------- /OpenVAS/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/OpenVAS/app.py -------------------------------------------------------------------------------- /OpenVAS/goxparse/goxparse.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/OpenVAS/goxparse/goxparse.py -------------------------------------------------------------------------------- /OpenVAS/goxparse/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/OpenVAS/goxparse/readme.md -------------------------------------------------------------------------------- /OpenVAS/pvsl/LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/OpenVAS/pvsl/LICENSE -------------------------------------------------------------------------------- /OpenVAS/pvsl/README.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/OpenVAS/pvsl/README.rst -------------------------------------------------------------------------------- /OpenVAS/pvsl/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/OpenVAS/pvsl/__init__.py -------------------------------------------------------------------------------- /OpenVAS/pvsl/client.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/OpenVAS/pvsl/client.py -------------------------------------------------------------------------------- /OpenVAS/pvsl/exceptions.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/OpenVAS/pvsl/exceptions.py -------------------------------------------------------------------------------- /OpenVAS/pvsl/response.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/OpenVAS/pvsl/response.py -------------------------------------------------------------------------------- /OpenVAS/pvsl/utils.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/OpenVAS/pvsl/utils.py -------------------------------------------------------------------------------- /OpenVAS/requirements.txt: -------------------------------------------------------------------------------- 1 | pytz 2 | tzlocal 3 | lxml 4 | -------------------------------------------------------------------------------- /Pcap/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Pcap/actions.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Pcap/actions.py -------------------------------------------------------------------------------- /Pcap/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Pcap/api.yaml -------------------------------------------------------------------------------- /Pcap/display.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Pcap/display.py -------------------------------------------------------------------------------- /Pcap/requirements.txt: -------------------------------------------------------------------------------- 1 | scapy -------------------------------------------------------------------------------- /PowerShell/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /PowerShell/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/PowerShell/api.yaml -------------------------------------------------------------------------------- /PowerShell/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/PowerShell/app.py -------------------------------------------------------------------------------- /PowerShell/interface/static/lib/c3/c3.min.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/PowerShell/interface/static/lib/c3/c3.min.css -------------------------------------------------------------------------------- /PowerShell/interface/static/lib/c3/c3.min.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/PowerShell/interface/static/lib/c3/c3.min.js -------------------------------------------------------------------------------- /PowerShell/interface/static/lib/d3/d3.min.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/PowerShell/interface/static/lib/d3/d3.min.js -------------------------------------------------------------------------------- /PowerShell/interface/static/lib/jvectormap/jquery-jvectormap-1.2.2.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/PowerShell/interface/static/lib/jvectormap/jquery-jvectormap-1.2.2.css -------------------------------------------------------------------------------- /PowerShell/interface/static/lib/jvectormap/jquery-jvectormap-1.2.2.min.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/PowerShell/interface/static/lib/jvectormap/jquery-jvectormap-1.2.2.min.js -------------------------------------------------------------------------------- /PowerShell/interface/static/lib/jvectormap/jquery-jvectormap-world-mill-en.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/PowerShell/interface/static/lib/jvectormap/jquery-jvectormap-world-mill-en.js -------------------------------------------------------------------------------- /PowerShell/interface/static/main.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/PowerShell/interface/static/main.js -------------------------------------------------------------------------------- /PowerShell/interface/templates/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/PowerShell/interface/templates/index.html -------------------------------------------------------------------------------- /PowerShell/requirements.txt: -------------------------------------------------------------------------------- 1 | pywinrm 2 | chardet -------------------------------------------------------------------------------- /PowerShell/scripts/test.ps1: -------------------------------------------------------------------------------- 1 | Write-Host "Hello World" -------------------------------------------------------------------------------- /PowerShell/tests/__init__.py: -------------------------------------------------------------------------------- 1 | __all__ = ['testMain'] 2 | -------------------------------------------------------------------------------- /PowerShell/tests/testMain.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/PowerShell/tests/testMain.py -------------------------------------------------------------------------------- /ProcessUtilities/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /ProcessUtilities/actions.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/ProcessUtilities/actions.py -------------------------------------------------------------------------------- /ProcessUtilities/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/ProcessUtilities/api.yaml -------------------------------------------------------------------------------- /ProcessUtilities/display.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/ProcessUtilities/display.py -------------------------------------------------------------------------------- /ProcessUtilities/requirements.txt: -------------------------------------------------------------------------------- 1 | psutil -------------------------------------------------------------------------------- /Proxmox/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Proxmox/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Proxmox/api.yaml -------------------------------------------------------------------------------- /Proxmox/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Proxmox/app.py -------------------------------------------------------------------------------- /Proxmox/requirements.txt: -------------------------------------------------------------------------------- 1 | proxmoxer 2 | requests -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/README.md -------------------------------------------------------------------------------- /Sftp/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Sftp/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Sftp/api.yaml -------------------------------------------------------------------------------- /Sftp/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Sftp/main.py -------------------------------------------------------------------------------- /Sftp/requirements.txt: -------------------------------------------------------------------------------- 1 | paramiko -------------------------------------------------------------------------------- /SkeletonApp/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /SkeletonApp/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/SkeletonApp/api.yaml -------------------------------------------------------------------------------- /SkeletonApp/display.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/SkeletonApp/display.py -------------------------------------------------------------------------------- /SkeletonApp/interface/templates/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/SkeletonApp/interface/templates/index.html -------------------------------------------------------------------------------- /SkeletonApp/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/SkeletonApp/main.py -------------------------------------------------------------------------------- /SkeletonApp/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /SmartPlug/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /SmartPlug/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/SmartPlug/api.yaml -------------------------------------------------------------------------------- /SmartPlug/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/SmartPlug/main.py -------------------------------------------------------------------------------- /SmartPlug/requirements.txt: -------------------------------------------------------------------------------- 1 | pyHS100 2 | win_inet_pton -------------------------------------------------------------------------------- /Snort/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Snort/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Snort/api.yaml -------------------------------------------------------------------------------- /Snort/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Snort/app.py -------------------------------------------------------------------------------- /Snort/requirements.txt: -------------------------------------------------------------------------------- 1 | idstools 2 | -------------------------------------------------------------------------------- /Splunk/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Splunk/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Splunk/api.yaml -------------------------------------------------------------------------------- /Splunk/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Splunk/main.py -------------------------------------------------------------------------------- /Splunk/requirements.txt: -------------------------------------------------------------------------------- 1 | splunk-sdk -------------------------------------------------------------------------------- /Tesla/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Tesla/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Tesla/api.yaml -------------------------------------------------------------------------------- /Tesla/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Tesla/main.py -------------------------------------------------------------------------------- /Tesla/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Tesla/teslajson/.gitignore: -------------------------------------------------------------------------------- 1 | # osx noise 2 | .DS_Store 3 | profile 4 | 5 | *.pyc 6 | build/ 7 | teslajson.egg-info/ 8 | dist/ 9 | MANIFEST 10 | -------------------------------------------------------------------------------- /Tesla/teslajson/CHANGES.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Tesla/teslajson/CHANGES.md -------------------------------------------------------------------------------- /Tesla/teslajson/LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Tesla/teslajson/LICENSE -------------------------------------------------------------------------------- /Tesla/teslajson/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Tesla/teslajson/README.md -------------------------------------------------------------------------------- /Tesla/teslajson/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Tesla/teslajson/setup.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Tesla/teslajson/setup.py -------------------------------------------------------------------------------- /Tesla/teslajson/teslajson.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Tesla/teslajson/teslajson.py -------------------------------------------------------------------------------- /UncomplicatedFirewall/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /UncomplicatedFirewall/actions.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/UncomplicatedFirewall/actions.py -------------------------------------------------------------------------------- /UncomplicatedFirewall/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/UncomplicatedFirewall/api.yaml -------------------------------------------------------------------------------- /UncomplicatedFirewall/display.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/UncomplicatedFirewall/display.py -------------------------------------------------------------------------------- /UncomplicatedFirewall/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Utilities/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Utilities/actions.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Utilities/actions.py -------------------------------------------------------------------------------- /Utilities/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Utilities/api.yaml -------------------------------------------------------------------------------- /Utilities/conditions.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Utilities/conditions.py -------------------------------------------------------------------------------- /Utilities/events.pybak: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Utilities/events.pybak -------------------------------------------------------------------------------- /Utilities/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Utilities/main.py -------------------------------------------------------------------------------- /Utilities/muster.desktop: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Utilities/muster.desktop -------------------------------------------------------------------------------- /Utilities/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Utilities/transforms.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Utilities/transforms.py -------------------------------------------------------------------------------- /Walkoff/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Walkoff/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Walkoff/api.yaml -------------------------------------------------------------------------------- /Walkoff/display.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Walkoff/display.py -------------------------------------------------------------------------------- /Walkoff/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Walkoff/main.py -------------------------------------------------------------------------------- /Walkoff/requirements.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /WatsonVisualRecognition/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /WatsonVisualRecognition/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/WatsonVisualRecognition/api.yaml -------------------------------------------------------------------------------- /WatsonVisualRecognition/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/WatsonVisualRecognition/main.py -------------------------------------------------------------------------------- /WatsonVisualRecognition/requirements.txt: -------------------------------------------------------------------------------- 1 | watson-developer-cloud -------------------------------------------------------------------------------- /Weather/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Weather/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Weather/api.yaml -------------------------------------------------------------------------------- /Weather/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Weather/main.py -------------------------------------------------------------------------------- /Weather/requirements.txt: -------------------------------------------------------------------------------- 1 | pyowm -------------------------------------------------------------------------------- /Webcam/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Webcam/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Webcam/api.yaml -------------------------------------------------------------------------------- /Webcam/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/Webcam/main.py -------------------------------------------------------------------------------- /Webcam/requirements.txt: -------------------------------------------------------------------------------- 1 | pygame -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/apps/Bro/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/apps/Bro/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/apps/Bro/api.yaml -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/apps/Bro/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/apps/Bro/app.py -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/apps/Bro/requirements.txt: -------------------------------------------------------------------------------- 1 | pandas 2 | networkx 3 | OTXv2 4 | six 5 | ipaddress -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/dns.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/dns.log -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/http.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/http.log -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/brolog.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/brolog.py -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/bootstrap/LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/bootstrap/LICENSE -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/bootstrap/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/bootstrap/README.md -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/bootstrap/js/tab.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/bootstrap/js/tab.js -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/c3/c3.min.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/c3/c3.min.css -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/c3/c3.min.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/c3/c3.min.js -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/d3/d3.min.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/d3/d3.min.js -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/AUTHORS.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/AUTHORS.txt -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/LICENSE.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/LICENSE.txt -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/README.md -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/bower.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/bower.json -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/dist/core.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/dist/core.js -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/package.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/package.json -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/src/ajax.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/src/ajax.js -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/src/ajax/var/location.js: -------------------------------------------------------------------------------- 1 | define( function() { 2 | "use strict"; 3 | 4 | return window.location; 5 | } ); 6 | -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/src/core.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/src/core.js -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/src/css.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/src/css.js -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/src/data.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/src/data.js -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/src/event.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/src/event.js -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/src/queue.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/src/queue.js -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/src/selector.js: -------------------------------------------------------------------------------- 1 | define( [ "./selector-sizzle" ], function() { 2 | "use strict"; 3 | } ); 4 | -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/src/var/arr.js: -------------------------------------------------------------------------------- 1 | define( function() { 2 | "use strict"; 3 | 4 | return []; 5 | } ); 6 | -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/src/var/class2type.js: -------------------------------------------------------------------------------- 1 | define( function() { 2 | "use strict"; 3 | 4 | // [[Class]] -> type pairs 5 | return {}; 6 | } ); 7 | -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/src/var/getProto.js: -------------------------------------------------------------------------------- 1 | define( function() { 2 | "use strict"; 3 | 4 | return Object.getPrototypeOf; 5 | } ); 6 | -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/src/wrap.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/lib/jquery/src/wrap.js -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/static/visualize.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/static/visualize.js -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/interfaces/Bro/interface/templates/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/interfaces/Bro/interface/templates/index.html -------------------------------------------------------------------------------- /demo_packages/bro_interface_demo/workflows/Bro.playbook: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_interface_demo/workflows/Bro.playbook -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/WalkoffBroNetmap.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/WalkoffBroNetmap.json -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/api.yaml -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/app.py -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/requirements.txt: -------------------------------------------------------------------------------- 1 | OTXv2 2 | -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/.gitignore -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/.travis.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/.travis.yml -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/LICENSE -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/README.md -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/build-rules.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/build-rules.py -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/iocs/README.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/iocs/README.txt -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/iocs/otx-c2-iocs-ipv6.txt: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/iocs/otx-c2-iocs.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/iocs/otx-c2-iocs.txt -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/iocs/otx-hash-iocs.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/iocs/otx-hash-iocs.txt -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/makefile -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/threatintel/LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/threatintel/LICENSE -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_agent_btz.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_agent_btz.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_apt10.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_apt10.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_apt19.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_apt19.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_apt28.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_apt28.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_apt34.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_apt34.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_backspace.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_backspace.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_buckeye.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_buckeye.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_casper.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_casper.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_cloudduke.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_cloudduke.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_cmstar.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_cmstar.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_codoso.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_codoso.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_deeppanda.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_deeppanda.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_derusbi.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_derusbi.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_dragonfly.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_dragonfly.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_dubnium.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_dubnium.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_duqu2.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_duqu2.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_emissary.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_emissary.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_eqgrp.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_eqgrp.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_foudre.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_foudre.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_freemilk.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_freemilk.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_furtim.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_furtim.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_glassRAT.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_glassRAT.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_greenbug.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_greenbug.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_hatman.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_hatman.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_hizor_rat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_hizor_rat.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_hkdoor.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_hkdoor.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_irongate.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_irongate.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_irontiger.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_irontiger.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_ism_rat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_ism_rat.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_keyboys.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_keyboys.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_khrat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_khrat.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_leviathan.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_leviathan.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_microcin.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_microcin.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_miniasp.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_miniasp.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_mofang.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_mofang.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_monsoon.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_monsoon.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_naikon.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_naikon.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_oilrig.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_oilrig.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_passcv.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_passcv.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_plugx.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_plugx.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_poisonivy.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_poisonivy.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_poshspy.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_poshspy.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_prikormka.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_prikormka.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_project_m.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_project_m.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_rokrat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_rokrat.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_ruag.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_ruag.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_sakula.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_sakula.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_scarcruft.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_scarcruft.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_shadowpad.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_shadowpad.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_shamoon.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_shamoon.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_shamoon2.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_shamoon2.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_silence.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_silence.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_strider.yara: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_strider.yara -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_stuxnet.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_stuxnet.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_suckfly.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_suckfly.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_sysscan.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_sysscan.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_ta17_293A.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_ta17_293A.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_ta17_318A.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_ta17_318A.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_ta17_318B.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_ta17_318B.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_ta459.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_ta459.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_telebots.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_telebots.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_tidepool.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_tidepool.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_tophat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_tophat.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_triton.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_triton.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_turla.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_turla.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_uboat_rat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_uboat_rat.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_waterbear.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_waterbear.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_waterbug.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_waterbug.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_win_plugx.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_win_plugx.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_winnti.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_winnti.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_xrat.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_xrat.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_zxshell.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/apt_zxshell.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/crime_cmstar.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/crime_cmstar.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/crime_enfal.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/crime_enfal.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/crime_envrial.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/crime_envrial.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/gen_empire.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/gen_empire.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/gen_floxif.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/gen_floxif.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/gen_pirpi.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/gen_pirpi.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/gen_pua.yar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/AlienVault/signature-base/yara/gen_pua.yar -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/Bro/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/Bro/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/Bro/api.yaml -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/Bro/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/apps/Bro/app.py -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/apps/Bro/requirements.txt: -------------------------------------------------------------------------------- 1 | pandas 2 | networkx 3 | OTXv2 4 | six 5 | ipaddress -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/bro2map.mp4: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/bro2map.mp4 -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/dnsWalkoffBroAnalysis.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/dnsWalkoffBroAnalysis.json -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/httpWalkoffBroAnalysis.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/httpWalkoffBroAnalysis.json -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/interfaces/Bro/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/interfaces/Bro/brolog.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/interfaces/Bro/brolog.py -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/index.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/index.css -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/c3/c3.min.css: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/c3/c3.min.css -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/c3/c3.min.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/c3/c3.min.js -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/d3/d3.min.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/d3/d3.min.js -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/d3v4/.npmignore: -------------------------------------------------------------------------------- 1 | *.sublime-* 2 | build/*.zip 3 | test/ 4 | -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/d3v4/API.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/d3v4/API.md -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/d3v4/LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/d3v4/LICENSE -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/d3v4/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/d3v4/README.md -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/d3v4/index.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/d3v4/index.js -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/jquery/src/ajax/var/location.js: -------------------------------------------------------------------------------- 1 | define( function() { 2 | "use strict"; 3 | 4 | return window.location; 5 | } ); 6 | -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/jquery/src/selector.js: -------------------------------------------------------------------------------- 1 | define( [ "./selector-sizzle" ], function() { 2 | "use strict"; 3 | } ); 4 | -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/jquery/src/var/arr.js: -------------------------------------------------------------------------------- 1 | define( function() { 2 | "use strict"; 3 | 4 | return []; 5 | } ); 6 | -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/jquery/src/var/class2type.js: -------------------------------------------------------------------------------- 1 | define( function() { 2 | "use strict"; 3 | 4 | // [[Class]] -> type pairs 5 | return {}; 6 | } ); 7 | -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/lib/jquery/src/var/getProto.js: -------------------------------------------------------------------------------- 1 | define( function() { 2 | "use strict"; 3 | 4 | return Object.getPrototypeOf; 5 | } ); 6 | -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/visualize.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/interfaces/Bro/interface/static/visualize.js -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/interfaces/Bro/interface/templates/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/interfaces/Bro/interface/templates/index.html -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/.state/state.bst: -------------------------------------------------------------------------------- 1 | BRSTZ|wW -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/conn.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/conn.log -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/dns.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/dns.log -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/dpd.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/dpd.log -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/files.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/files.log -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/http.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/http.log -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/kerberos.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/kerberos.log -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/modbus.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/modbus.log -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/packet_filter.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/packet_filter.log -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/ssh.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/ssh.log -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/ssl.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/ssl.log -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/weird.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/weird.log -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/x509.log: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/pcaps/4SICS-GeekLounge-151021/x509.log -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/pcaps/modified_from_source.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/pcaps/modified_from_source.txt -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/readme_bro.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/readme_bro.md -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/walkoffBroWhitelist.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/walkoffBroWhitelist.txt -------------------------------------------------------------------------------- /demo_packages/bro_netmap_interface/workflows/Bro.playbook: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/bro_netmap_interface/workflows/Bro.playbook -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/WalkoffDemoGraph.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/nmap-openvas_interface_demo/WalkoffDemoGraph.json -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/apps/Nmap/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/apps/Nmap/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/nmap-openvas_interface_demo/apps/Nmap/api.yaml -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/apps/Nmap/main.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/nmap-openvas_interface_demo/apps/Nmap/main.py -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/apps/Nmap/requirements.txt: -------------------------------------------------------------------------------- 1 | python-libnmap 2 | networkx -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/api.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/api.yaml -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/app.py -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/goxparse/csvfile.csv: -------------------------------------------------------------------------------- 1 | 127.0.0.2,567,678,4000 2 | -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/goxparse/goxparse.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/goxparse/goxparse.py -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/goxparse/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/goxparse/readme.md -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/pvsl/LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/pvsl/LICENSE -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/pvsl/README.rst: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/pvsl/README.rst -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/pvsl/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/pvsl/__init__.py -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/pvsl/client.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/pvsl/client.py -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/pvsl/exceptions.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/pvsl/exceptions.py -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/pvsl/response.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/pvsl/response.py -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/pvsl/utils.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/pvsl/utils.py -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/apps/OpenVAS/requirements.txt: -------------------------------------------------------------------------------- 1 | pytz 2 | tzlocal 3 | lxml 4 | -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/interfaces/nmapopenvas/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/interfaces/nmapopenvas/graphs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/nmap-openvas_interface_demo/interfaces/nmapopenvas/graphs.py -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/interfaces/nmapopenvas/interface/static/lib/d3/.npmignore: -------------------------------------------------------------------------------- 1 | *.sublime-* 2 | build/*.zip 3 | test/ 4 | -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/interfaces/nmapopenvas/interface/static/lib/jquery/src/ajax/var/location.js: -------------------------------------------------------------------------------- 1 | define( function() { 2 | "use strict"; 3 | 4 | return window.location; 5 | } ); 6 | -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/interfaces/nmapopenvas/interface/static/lib/jquery/src/selector.js: -------------------------------------------------------------------------------- 1 | define( [ "./selector-sizzle" ], function() { 2 | "use strict"; 3 | } ); 4 | -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/interfaces/nmapopenvas/interface/static/lib/jquery/src/var/arr.js: -------------------------------------------------------------------------------- 1 | define( function() { 2 | "use strict"; 3 | 4 | return []; 5 | } ); 6 | -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/interfaces/nmapopenvas/interface/static/lib/jquery/src/var/class2type.js: -------------------------------------------------------------------------------- 1 | define( function() { 2 | "use strict"; 3 | 4 | // [[Class]] -> type pairs 5 | return {}; 6 | } ); 7 | -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/interfaces/nmapopenvas/interface/static/lib/jquery/src/var/getProto.js: -------------------------------------------------------------------------------- 1 | define( function() { 2 | "use strict"; 3 | 4 | return Object.getPrototypeOf; 5 | } ); 6 | -------------------------------------------------------------------------------- /demo_packages/nmap-openvas_interface_demo/workflows/InterfaceDemo.playbook: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/nmap-openvas_interface_demo/workflows/InterfaceDemo.playbook -------------------------------------------------------------------------------- /demo_packages/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/nsacyber/WALKOFF-Apps/HEAD/demo_packages/readme.md --------------------------------------------------------------------------------