AppCompatProcessor Logo

AppCompatProcessor

0
Free
Visit Website

AppCompatProcessor has been designed to extract additional value from enterprise-wide AppCompat / AmCache data beyond the classic stacking and grepping techniques. Note: Windows platform support has been temporarily removed (expect to see it back shortly though). Installation: OSX: You need Python 2.7+, libregf and pyregf (python bindings) from https://github.com/libyal/libregf -Option A Source distribution package from https://github.com/libyal/libregf/releases ./configure --enable-python && make sudo make install python setup.py build python setup.py install -Option B Direct from source git clone https://github.com/libyal/libregf.git cd libregf/ ./synclibs.sh ./autogen.sh ./configure --enable-python && make sudo make install python setup.py build python setup.py install The rest of the requirements you can handle with 'pip install -r requirements.txt'. Linux: You need Python 2.7+ and 'sudo pip install -r requirements.txt' should take care of everything for you. If you have issues with libregf or

FEATURES

ALTERNATIVES

Powershell Threat Hunting Module for scanning remote endpoints and collecting comprehensive information.

TIH is an intelligence tool that helps you search for IOCs across multiple security feeds and APIs.

A collection of tools and resources for threat hunters.

Real-time, container-based file scanning system for threat hunting and incident response.

A comprehensive and unrestricted dataset of security incidents for research and decision-making

Amazon GuardDuty is a threat detection service for AWS accounts.

A system for collecting, managing, and distributing security information on a large scale, developed by CERT Polska.

An extendable tool to extract and aggregate IOCs from threat feeds, integrates with ThreatKB and MISP.