Tools: Malware Analysis: P4T12ICK/ypsilon

2024-06-27 06:02:09 +00:00 · 2018-06-13 14:55:57 +00:00 · 2018-06-13 14:55:57 +00:00 · a78f1b162e
commit a78f1b162e
parent 33ff01a45b
1 changed files with 4 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -1414,6 +1414,10 @@ _return-to-libc techniques_
        <td><a href="https://github.com/OALabs/PyIATRebuild">OALabs/PyIATRebuild</a></td>
        <td>Automatically rebuild Import Address Table for dumped PE file. With python bindings!</td>
    </tr>
+    <tr>
+        <td><a href="https://github.com/P4T12ICK/ypsilon">P4T12ICK/ypsilon</a></td>
+        <td>Ypsilon is an Automated Security Use Case Testing Environment using real malware to test SIEM use cases in an closed environment. Different tools such as Ansible, Cuckoo, VirtualBox, Splunk and ELK are combined to determine the quality of a SIEM use case by testing any number of malware against a SIEM use case. Finally, a test report is generated giving insight to the quality of an use case.</td>
+    </tr>
    <tr>
        <td><a href="https://github.com/phage-nz/ph0neutria">phage-nz/ph0neutria</a></td>
        <td>ph0neutria is a malware zoo builder that sources samples straight from the wild. Everything is stored in Viper for ease of access and manageability.</td>