3c7

🦊

Nils Kuhnert 3c7

🦊

TI, RE, DFIR stuff. Everything you find on this profile is the reason why I'm not a developer.

189 followers · 58 following

Achievements

common-osint-model Public

Converting data from services like Censys and Shodan to a common data model

infrastructure data censys shodan osint analysis model

Python 52 10 MIT License Updated Feb 11, 2026
hashdb-cli Public

Query the open analysis hashdb https://hashdb.openanalysis.net via CLI

hash hashdb openanalysis

Python 1 MIT License Updated Oct 27, 2025
bazaar Public

Python based CLI for MalwareBazaar

api cli malware bazaar yaraify

Python 39 5 MIT License Updated Jul 22, 2025
yara-x Public
Forked from VirusTotal/yara-x

A rewrite of YARA in Rust.

Rust BSD 3-Clause "New" or "Revised" License Updated Jul 7, 2025
age-encrypted-notebook Public

Age encrypted notes saved in a bolt DB

go golang boltdb age-encryption

Go 22 MIT License Updated Jan 16, 2025
yaramod Public
Forked from avast/yaramod

Parsing of YARA rules into AST and building new rulesets in C++.

C++ MIT License Updated Jun 7, 2024
misp-galaxy Public
Forked from MISP/misp-galaxy

Clusters and elements to attach to MISP events or attributes (like threat actors)

Python Other Updated May 29, 2024
vt2m Public

VirusTotal Query to MISP Objects

ioc intelligence threat objects misp relationships virustotal

Python 9 MIT License Updated May 21, 2024
yls-macos-arm Public

Temporary fork of yls in order to build macos arm releases.

Python MIT License Updated May 10, 2024
yari-macos-arm Public

Temporary fork of yari in order to build macos arm releases.

Rust MIT License Updated May 10, 2024
signature-base Public
Forked from Neo23x0/signature-base

Signature base for my scanner tools

YARA Other Updated Mar 29, 2024
yari Public
Forked from avast/yari

YARI is an interactive debugger for YARA Language.

Rust MIT License Updated Jan 28, 2024
homebrew-tap Public

My own homebrew tap for testing purposes

Ruby Updated Jan 8, 2024
yls Public
Forked from avast/yls

YARA Language Server

Python MIT License Updated Nov 3, 2023
vscode-yara Public
Forked from infosec-intern/vscode-yara

VSCode extension for the YARA pattern matching language

TypeScript MIT License Updated Sep 6, 2023
vscode-yara-abandoned Public
Forked from infosec-intern/vscode-yara-abandoned

Work in progress update to the YARA extension for Visual Studio Code (formerly textmate-yara)

Python MIT License Updated Sep 6, 2023
HHHash Public
Forked from adulau/HHHash

HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.

Python MIT License Updated Jul 14, 2023
hashdb Public
Forked from OALabs/hashdb

Assortment of hashing algorithms used in malware

Python Apache License 2.0 Updated Jun 26, 2023
aptmap Public

A map displaying threat actors from the misp-galaxy

intelligence apt advanced threat persistent misp

TypeScript 33 5 Updated Jan 16, 2023
yaramanager Public archive

Simple yara rule manager

cli sqlite yara

Python 67 7 MIT License Updated Dec 27, 2022
python-imqfody Public

Python module that wraps intelmq fody api

api fody intelmq

Python 2 MIT License Updated Dec 9, 2022
infrastructure-tracking-schema Public

infrastructure tracking osint apt threat-hunting threat-intelligence

Python 24 2 MIT License Updated Sep 28, 2022
pocketbase Public
Forked from pocketbase/pocketbase

Open Source realtime backend in 1 file

Go MIT License Updated Jul 9, 2022
flare-floss Public
Forked from mandiant/flare-floss

FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.

Python Apache License 2.0 Updated Jun 23, 2022
misp-objects Public
Forked from MISP/misp-objects

Definition, description and relationship types of MISP objects

Python Updated Apr 26, 2022
misp-docker Public
Forked from MISP/x_old_misp_docker

MISP Docker (XME edition)

Shell Updated Apr 26, 2022
MISP Public
Forked from MISP/MISP

MISP (core software) - Open Source Threat Intelligence Platform (formely known as Malware Information Sharing Platform)

PHP 1 GNU Affero General Public License v3.0 Updated Mar 17, 2022
gym Public

Go Yara Manager

Updated Mar 15, 2022
yara-rules Public

Some shared yara rules

malware signature threat-hunting yara threat-intelligence

YARA Creative Commons Attribution Share Alike 4.0 International Updated Feb 26, 2022
Log4Pot Public
Forked from thomaspatzke/Log4Pot

Python 1 GNU General Public License v3.0 Updated Dec 23, 2021

Nils Kuhnert 3c7

Achievements

Achievements

common-osint-model Public

Uh oh!

hashdb-cli Public

Uh oh!

bazaar Public

Uh oh!

yara-x Public

Uh oh!

age-encrypted-notebook Public

Uh oh!

yaramod Public

Uh oh!

misp-galaxy Public

Uh oh!

vt2m Public

Uh oh!

yls-macos-arm Public

Uh oh!

yari-macos-arm Public

Uh oh!

signature-base Public

Uh oh!

yari Public

Uh oh!

homebrew-tap Public

Uh oh!

yls Public

Uh oh!

vscode-yara Public

Uh oh!

vscode-yara-abandoned Public

Uh oh!

HHHash Public

Uh oh!

hashdb Public

Uh oh!

aptmap Public

Uh oh!

yaramanager Public archive

Uh oh!

python-imqfody Public

Uh oh!

infrastructure-tracking-schema Public

Uh oh!

pocketbase Public

Uh oh!

flare-floss Public

Uh oh!

misp-objects Public

Uh oh!

misp-docker Public

Uh oh!

MISP Public

Uh oh!

gym Public

Uh oh!

yara-rules Public

Uh oh!

Log4Pot Public

Uh oh!