elastic / labs-releases - File Age & Freshness

File age measurements show the distribution of file ages (days since the first commit) and the file freshness (days since the latest commit).

Summary

Number of files: 77
Daily file updates (only one update per file and date counted): 191
First update: 2023-02-23
Latest update: 2025-04-01
Days between first and latest update: 769 (109 weeks, estimated 545 working days)
Active days (at least one file change): 58
Data:

Organized per file

File Change History Overall

File Age Distribution Overall

Days since first update

There are 77 files with 4,333 lines of code in files.

57 files that are 366+ days old (3,425 lines of code)
18 files that are 181-365 days old (771 lines of code)
0 files that are 91-180 days old (0 lines of code)
2 files that are 31-90 days old (137 lines of code)
0 files that are 1-30 days old (0 lines of code)

Legend:

366+

181-365

91-180

31-90

1-30

explore: grouped by folders | grouped by age

File Freshness Distribution Overall

Days since last update

There are 77 files with 4,333 lines of code in files.

43 files have been last changed 366+ days ago (1,927 lines of code)
32 files have been last changed 181-365 days ago (2,269 lines of code)
0 files have been last changed 91-180 days ago (0 lines of code)
2 files have been last changed 31-90 days ago (137 lines of code)
0 files have been last changed 1-30 days ago (0 lines of code)

Legend:

366+

181-365

91-180

31-90

1-30

explore: grouped by folders | grouped by freshness

File Change History per File Extension

py, md, json, txt, c, gitignore, h, yar, toml

File Age Distribution per Extension

Days since first update

366+

181-365

91-180

31-90

1-30

File Freshness Distribution per Extension

Days since last update

366+

181-365

91-180

31-90

1-30

File Change History per Logical Decomposition

primary

primary (file age distribution)

Days since first update

366+

181-365

91-180

31-90

1-30

primary (file freshness distribution)

Days since last update

366+

181-365

91-180

31-90

1-30

Oldest Files (Top 50)

File	# lines	# units	created	last modified	# changes (days)	# contributors	first contributor	latest contributor
lobshot_config_extractor.py in extractors/lobshot	59	6	2023-04-25	2024-09-27	2	3	57736958+dstepanic@users.no...	salim.bitam@outlook.fr
custom_pe.py in nightMARE/src/nightmare/malware/icedid	271	21	2023-05-03	2024-04-29	3	3	7442091+peasead@users.norep...	99127082+cyril-t-f@users.no...
emulation.py in nightMARE/src/nightmare/analysis	136	21	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
utils.py in nightMARE/src/nightmare	96	14	2023-05-03	2024-09-27	9	6	7442091+peasead@users.norep...	salim.bitam@outlook.fr
fake_gzip.py in nightMARE/src/nightmare/malware/icedid	81	13	2023-05-03	2023-08-30	3	3	7442091+peasead@users.norep...	7442091+peasead@users.norep...
extract_payloads_from_core.py in tools/icedid/gzip-variant	77	5	2023-05-03	2024-04-29	3	3	7442091+peasead@users.norep...	99127082+cyril-t-f@users.no...
win32.py in nightMARE/src/nightmare	74	5	2023-05-03	2024-05-14	5	5	7442091+peasead@users.norep...	57736958+dstepanic@users.no...
load_core.py in tools/icedid/gzip-variant	57	4	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
crypto.py in nightMARE/src/nightmare/malware/icedid	43	6	2023-05-03	2023-08-30	3	3	7442091+peasead@users.norep...	7442091+peasead@users.norep...
configuration.py in nightMARE/src/nightmare/malware/icedid	35	5	2023-05-03	2023-08-30	3	3	7442091+peasead@users.norep...	7442091+peasead@users.norep...
bits.py in nightMARE/src/nightmare/analysis	31	12	2023-05-03	2024-04-29	5	4	7442091+peasead@users.norep...	99127082+cyril-t-f@users.no...
extract_gzip.py in tools/icedid/gzip-variant	31	3	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
yar core_payloads.yar in tools/icedid/gzip-variant	22	-	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
compression.py in nightMARE/src/nightmare/malware/icedid	21	2	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
rebuild_pe.py in tools/icedid	20	2	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
pyproject.toml in nightMARE	18	-	2023-05-03	2024-10-19	10	6	7442091+peasead@users.norep...	salim.bitam@outlook.fr
decompress_file.py in tools/icedid	18	2	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
decrypt_file.py in tools/icedid	18	2	2023-05-03	2024-04-29	3	3	7442091+peasead@users.norep...	99127082+cyril-t-f@users.no...
read_configuration.py in tools/icedid/gzip-variant	17	2	2023-05-03	2024-04-29	3	3	7442091+peasead@users.norep...	99127082+cyril-t-f@users.no...
core.py in nightMARE/src/nightmare/malware/icedid	15	-	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
__init__.py in nightMARE/src/nightmare/malware/icedid	1	-	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
__init__.py in nightMARE/src/nightmare/malware	1	-	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
__init__.py in nightMARE/src/nightmare	1	-	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
__init__.py in nightMARE/src/nightmare/analysis	1	-	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
enrich_policy_setup.py in tools/malware_research	235	8	2023-07-31	2023-08-24	2	3	78494512+aegrah@users.norep...	7442091+peasead@users.norep...
custom_pipelines.py in tools/malware_research	68	7	2023-07-31	2023-08-24	2	3	78494512+aegrah@users.norep...	7442091+peasead@users.norep...
gsub_pipeline_json_object.py in tools/malware_research	31	-	2023-07-31	2023-08-24	2	3	78494512+aegrah@users.norep...	7442091+peasead@users.norep...
blister_payload_extractor.py in tools/blister	66	5	2023-08-24	2023-08-30	3	3	57736958+dstepanic@users.no...	7442091+peasead@users.norep...
configuration.py in nightMARE/src/nightmare/malware/blister	192	7	2023-08-25	2024-09-27	6	4	salim.bitam@outlook.fr	salim.bitam@outlook.fr
crypto.py in nightMARE/src/nightmare/malware/blister	118	10	2023-08-25	2024-09-27	3	3	salim.bitam@outlook.fr	salim.bitam@outlook.fr
lznt1.py in nightMARE/src/nightmare/analysis/compression	59	3	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
core.py in nightMARE/src/nightmare/malware/xorddos	56	5	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
configuration.py in nightMARE/src/nightmare/malware/xorddos	52	4	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
crypto.py in nightMARE/src/nightmare/malware/xorddos	37	4	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
configuration.py in nightMARE/src/nightmare/malware/lobshot	29	3	2023-08-25	2024-09-27	3	3	salim.bitam@outlook.fr	salim.bitam@outlook.fr
crypto.py in nightMARE/src/nightmare/malware/lobshot	20	1	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
strings.py in nightMARE/src/nightmare/malware/xorddos	16	3	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
crypto.py in nightMARE/src/nightmare/malware/nighthawk	10	1	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
__init__.py in nightMARE/src/nightmare/malware/lobshot	1	-	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
__init__.py in nightMARE/src/nightmare/malware/nighthawk	1	-	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
payload.py in nightMARE/src/nightmare/malware/ghostpulse	119	8	2023-10-27	2024-10-19	5	4	7442091+peasead@users.norep...	salim.bitam@outlook.fr
ghostpulse_payload_extractor.py in tools/ghostpulse	69	5	2023-10-27	2023-10-27	1	2	7442091+peasead@users.norep...	salim.bitam@outlook.fr
guloader_FixCFG.py in tools/guloader	37	2	2023-11-30	2024-04-29	6	5	daniel.stepanic@elastic.co	99127082+cyril-t-f@users.no...
ctree_practical_example.py in tools/ida_scripts/hexrays_examples	39	4	2024-02-06	2024-02-06	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
microcode_traversal.py in tools/ida_scripts/hexrays_examples	39	6	2024-02-06	2024-02-06	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
ctree_traversal.py in tools/ida_scripts/hexrays_examples	34	3	2024-02-06	2024-02-06	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
stix_to_ecs.py in tools/stix-to-ecs	425	31	2024-02-07	2024-08-28	9	4	7442091+peasead@users.norep...	cyril.francois@elastic.co
clean_stix.py in tools/stix-to-ecs/extra	54	6	2024-02-07	2024-02-07	1	1	7442091+peasead@users.norep...	7442091+peasead@users.norep...
configuration.py in nightMARE/src/nightmare/malware/remcos	216	10	2024-04-23	2024-09-27	3	3	cyril.francois@elastic.co	salim.bitam@outlook.fr
cast.py in nightMARE/src/nightmare	21	-	2024-04-23	2024-04-29	2	2	cyril.francois@elastic.co	99127082+cyril-t-f@users.no...

Files Not Recently Changed (Top 50)

File	# lines	# units	created	last modified	# changes (days)	# contributors	first contributor	latest contributor
__init__.py in nightMARE/src/nightmare/analysis	1	-	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
__init__.py in nightMARE/src/nightmare	1	-	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
__init__.py in nightMARE/src/nightmare/malware	1	-	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
__init__.py in nightMARE/src/nightmare/malware/icedid	1	-	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
core.py in nightMARE/src/nightmare/malware/icedid	15	-	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
decompress_file.py in tools/icedid	18	2	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
rebuild_pe.py in tools/icedid	20	2	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
compression.py in nightMARE/src/nightmare/malware/icedid	21	2	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
yar core_payloads.yar in tools/icedid/gzip-variant	22	-	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
extract_gzip.py in tools/icedid/gzip-variant	31	3	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
load_core.py in tools/icedid/gzip-variant	57	4	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
emulation.py in nightMARE/src/nightmare/analysis	136	21	2023-05-03	2023-05-03	1	2	7442091+peasead@users.norep...	cyril.francois@elastic.co
gsub_pipeline_json_object.py in tools/malware_research	31	-	2023-07-31	2023-08-24	2	3	78494512+aegrah@users.norep...	7442091+peasead@users.norep...
custom_pipelines.py in tools/malware_research	68	7	2023-07-31	2023-08-24	2	3	78494512+aegrah@users.norep...	7442091+peasead@users.norep...
enrich_policy_setup.py in tools/malware_research	235	8	2023-07-31	2023-08-24	2	3	78494512+aegrah@users.norep...	7442091+peasead@users.norep...
__init__.py in nightMARE/src/nightmare/malware/nighthawk	1	-	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
__init__.py in nightMARE/src/nightmare/malware/lobshot	1	-	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
crypto.py in nightMARE/src/nightmare/malware/nighthawk	10	1	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
strings.py in nightMARE/src/nightmare/malware/xorddos	16	3	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
crypto.py in nightMARE/src/nightmare/malware/lobshot	20	1	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
configuration.py in nightMARE/src/nightmare/malware/icedid	35	5	2023-05-03	2023-08-30	3	3	7442091+peasead@users.norep...	7442091+peasead@users.norep...
crypto.py in nightMARE/src/nightmare/malware/xorddos	37	4	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
crypto.py in nightMARE/src/nightmare/malware/icedid	43	6	2023-05-03	2023-08-30	3	3	7442091+peasead@users.norep...	7442091+peasead@users.norep...
configuration.py in nightMARE/src/nightmare/malware/xorddos	52	4	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
core.py in nightMARE/src/nightmare/malware/xorddos	56	5	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
lznt1.py in nightMARE/src/nightmare/analysis/compression	59	3	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
blister_payload_extractor.py in tools/blister	66	5	2023-08-24	2023-08-30	3	3	57736958+dstepanic@users.no...	7442091+peasead@users.norep...
fake_gzip.py in nightMARE/src/nightmare/malware/icedid	81	13	2023-05-03	2023-08-30	3	3	7442091+peasead@users.norep...	7442091+peasead@users.norep...
ghostpulse_payload_extractor.py in tools/ghostpulse	69	5	2023-10-27	2023-10-27	1	2	7442091+peasead@users.norep...	salim.bitam@outlook.fr
ctree_traversal.py in tools/ida_scripts/hexrays_examples	34	3	2024-02-06	2024-02-06	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
microcode_traversal.py in tools/ida_scripts/hexrays_examples	39	6	2024-02-06	2024-02-06	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
ctree_practical_example.py in tools/ida_scripts/hexrays_examples	39	4	2024-02-06	2024-02-06	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
clean_stix.py in tools/stix-to-ecs/extra	54	6	2024-02-07	2024-02-07	1	1	7442091+peasead@users.norep...	7442091+peasead@users.norep...
__init__.py in nightMARE/src/nightmare/malware/remcos	1	-	2024-04-23	2024-04-29	2	2	cyril.francois@elastic.co	99127082+cyril-t-f@users.no...
c2.py in nightMARE/src/nightmare/malware/remcos	10	2	2024-04-23	2024-04-29	2	2	cyril.francois@elastic.co	99127082+cyril-t-f@users.no...
read_configuration.py in tools/icedid/gzip-variant	17	2	2023-05-03	2024-04-29	3	3	7442091+peasead@users.norep...	99127082+cyril-t-f@users.no...
decrypt_file.py in tools/icedid	18	2	2023-05-03	2024-04-29	3	3	7442091+peasead@users.norep...	99127082+cyril-t-f@users.no...
cast.py in nightMARE/src/nightmare	21	-	2024-04-23	2024-04-29	2	2	cyril.francois@elastic.co	99127082+cyril-t-f@users.no...
bits.py in nightMARE/src/nightmare/analysis	31	12	2023-05-03	2024-04-29	5	4	7442091+peasead@users.norep...	99127082+cyril-t-f@users.no...
guloader_FixCFG.py in tools/guloader	37	2	2023-11-30	2024-04-29	6	5	daniel.stepanic@elastic.co	99127082+cyril-t-f@users.no...
extract_payloads_from_core.py in tools/icedid/gzip-variant	77	5	2023-05-03	2024-04-29	3	3	7442091+peasead@users.norep...	99127082+cyril-t-f@users.no...
custom_pe.py in nightMARE/src/nightmare/malware/icedid	271	21	2023-05-03	2024-04-29	3	3	7442091+peasead@users.norep...	99127082+cyril-t-f@users.no...
remcos_configuration_extractor.py in extractors/remcos	74	5	2024-05-02	2024-05-02	1	1	cyril.francois@elastic.co	cyril.francois@elastic.co
__init__.py in nightMARE/src/nightmare/analysis/compression	1	-	2024-05-14	2024-05-14	1	2	57736958+dstepanic@users.no...	daniel.stepanic@elastic.co
__init__.py in nightMARE/src/nightmare/malware/ghostpulse	1	-	2024-05-14	2024-05-14	1	2	57736958+dstepanic@users.no...	daniel.stepanic@elastic.co
__init__.py in nightMARE/src/nightmare/malware/redlinestealer	1	-	2024-05-13	2024-05-14	2	2	daniel.stepanic@elastic.co	57736958+dstepanic@users.no...
__init__.py in nightMARE/src/nightmare/malware/latrodectus	1	-	2024-05-14	2024-05-14	1	2	57736958+dstepanic@users.no...	daniel.stepanic@elastic.co
__init__.py in nightMARE/src/nightmare/malware/xorddos	1	-	2024-05-14	2024-05-14	1	2	57736958+dstepanic@users.no...	daniel.stepanic@elastic.co
__init__.py in nightMARE/src/nightmare/malware/blister	1	-	2024-05-14	2024-05-14	1	2	57736958+dstepanic@users.no...	daniel.stepanic@elastic.co
crypto.py in nightMARE/src/nightmare/malware/latrodectus	9	1	2024-05-13	2024-05-14	2	2	daniel.stepanic@elastic.co	57736958+dstepanic@users.no...

Most Recently Created Files (Top 50)

File	# lines	# units	created	last modified	# changes (days)	# contributors	first contributor	latest contributor
main.c in tools/abyssworker/client	101	5	2025-03-20	2025-03-20	1	2	99127082+cyril-t-f@users.no...	cyril.francois@elastic.co
main.h in tools/abyssworker/client	36	-	2025-03-20	2025-03-20	1	2	99127082+cyril-t-f@users.no...	cyril.francois@elastic.co
warmcookie_http.py in tools/warmcookie	293	12	2024-10-02	2024-10-02	1	2	57736958+dstepanic@users.no...	daniel.stepanic@elastic.co
configuration.py in nightMARE/src/nightmare/malware/netwire	124	6	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
configuration.py in nightMARE/src/nightmare/malware/smokeloader	81	4	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
redlinestealer_config_extractor.py in extractors/redlinestealer	50	4	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
strela_stealer_payload_extractor.py in extractors/strelastealer	43	3	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
configuration.py in nightMARE/src/nightmare/malware/stealc	42	3	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
crypto.py in nightMARE/src/nightmare/malware/stealc	24	1	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
payload.py in nightMARE/src/nightmare/malware/strelastealer	17	1	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
__init__.py in nightMARE/src/nightmare/malware/smokeloader	1	-	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
__init__.py in nightMARE/src/nightmare/malware/strelastealer	1	-	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
__init__.py in nightMARE/src/nightmare/malware/netwire	1	-	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
__init__.py in nightMARE/src/nightmare/malware/stealc	1	-	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
warmcookie_str_decrypt.py in tools/warmcookie	88	6	2024-06-06	2024-10-02	3	2	daniel.stepanic@elastic.co	daniel.stepanic@elastic.co
__init__.py in nightMARE/src/nightmare/malware/blister	1	-	2024-05-14	2024-05-14	1	2	57736958+dstepanic@users.no...	daniel.stepanic@elastic.co
__init__.py in nightMARE/src/nightmare/malware/xorddos	1	-	2024-05-14	2024-05-14	1	2	57736958+dstepanic@users.no...	daniel.stepanic@elastic.co
__init__.py in nightMARE/src/nightmare/malware/latrodectus	1	-	2024-05-14	2024-05-14	1	2	57736958+dstepanic@users.no...	daniel.stepanic@elastic.co
__init__.py in nightMARE/src/nightmare/malware/ghostpulse	1	-	2024-05-14	2024-05-14	1	2	57736958+dstepanic@users.no...	daniel.stepanic@elastic.co
__init__.py in nightMARE/src/nightmare/analysis/compression	1	-	2024-05-14	2024-05-14	1	2	57736958+dstepanic@users.no...	daniel.stepanic@elastic.co
latro_str_decrypt.py in tools/latrodectus	90	4	2024-05-13	2024-05-20	3	3	daniel.stepanic@elastic.co	57736958+dstepanic@users.no...
configuration.py in nightMARE/src/nightmare/malware/redlinestealer	52	5	2024-05-13	2024-05-14	2	2	daniel.stepanic@elastic.co	57736958+dstepanic@users.no...
crypto.py in nightMARE/src/nightmare/malware/latrodectus	9	1	2024-05-13	2024-05-14	2	2	daniel.stepanic@elastic.co	57736958+dstepanic@users.no...
__init__.py in nightMARE/src/nightmare/malware/redlinestealer	1	-	2024-05-13	2024-05-14	2	2	daniel.stepanic@elastic.co	57736958+dstepanic@users.no...
remcos_configuration_extractor.py in extractors/remcos	74	5	2024-05-02	2024-05-02	1	1	cyril.francois@elastic.co	cyril.francois@elastic.co
configuration.py in nightMARE/src/nightmare/malware/remcos	216	10	2024-04-23	2024-09-27	3	3	cyril.francois@elastic.co	salim.bitam@outlook.fr
cast.py in nightMARE/src/nightmare	21	-	2024-04-23	2024-04-29	2	2	cyril.francois@elastic.co	99127082+cyril-t-f@users.no...
c2.py in nightMARE/src/nightmare/malware/remcos	10	2	2024-04-23	2024-04-29	2	2	cyril.francois@elastic.co	99127082+cyril-t-f@users.no...
__init__.py in nightMARE/src/nightmare/malware/remcos	1	-	2024-04-23	2024-04-29	2	2	cyril.francois@elastic.co	99127082+cyril-t-f@users.no...
stix_to_ecs.py in tools/stix-to-ecs	425	31	2024-02-07	2024-08-28	9	4	7442091+peasead@users.norep...	cyril.francois@elastic.co
clean_stix.py in tools/stix-to-ecs/extra	54	6	2024-02-07	2024-02-07	1	1	7442091+peasead@users.norep...	7442091+peasead@users.norep...
ctree_practical_example.py in tools/ida_scripts/hexrays_examples	39	4	2024-02-06	2024-02-06	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
microcode_traversal.py in tools/ida_scripts/hexrays_examples	39	6	2024-02-06	2024-02-06	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
ctree_traversal.py in tools/ida_scripts/hexrays_examples	34	3	2024-02-06	2024-02-06	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
guloader_FixCFG.py in tools/guloader	37	2	2023-11-30	2024-04-29	6	5	daniel.stepanic@elastic.co	99127082+cyril-t-f@users.no...
payload.py in nightMARE/src/nightmare/malware/ghostpulse	119	8	2023-10-27	2024-10-19	5	4	7442091+peasead@users.norep...	salim.bitam@outlook.fr
ghostpulse_payload_extractor.py in tools/ghostpulse	69	5	2023-10-27	2023-10-27	1	2	7442091+peasead@users.norep...	salim.bitam@outlook.fr
configuration.py in nightMARE/src/nightmare/malware/blister	192	7	2023-08-25	2024-09-27	6	4	salim.bitam@outlook.fr	salim.bitam@outlook.fr
crypto.py in nightMARE/src/nightmare/malware/blister	118	10	2023-08-25	2024-09-27	3	3	salim.bitam@outlook.fr	salim.bitam@outlook.fr
lznt1.py in nightMARE/src/nightmare/analysis/compression	59	3	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
core.py in nightMARE/src/nightmare/malware/xorddos	56	5	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
configuration.py in nightMARE/src/nightmare/malware/xorddos	52	4	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
crypto.py in nightMARE/src/nightmare/malware/xorddos	37	4	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
configuration.py in nightMARE/src/nightmare/malware/lobshot	29	3	2023-08-25	2024-09-27	3	3	salim.bitam@outlook.fr	salim.bitam@outlook.fr
crypto.py in nightMARE/src/nightmare/malware/lobshot	20	1	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
strings.py in nightMARE/src/nightmare/malware/xorddos	16	3	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
crypto.py in nightMARE/src/nightmare/malware/nighthawk	10	1	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
__init__.py in nightMARE/src/nightmare/malware/lobshot	1	-	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
__init__.py in nightMARE/src/nightmare/malware/nighthawk	1	-	2023-08-25	2023-08-30	2	3	salim.bitam@outlook.fr	7442091+peasead@users.norep...
blister_payload_extractor.py in tools/blister	66	5	2023-08-24	2023-08-30	3	3	57736958+dstepanic@users.no...	7442091+peasead@users.norep...

Most Recently Changed Files (Top 50)

File	# lines	# units	created	last modified	# changes (days)	# contributors	first contributor	latest contributor
main.c in tools/abyssworker/client	101	5	2025-03-20	2025-03-20	1	2	99127082+cyril-t-f@users.no...	cyril.francois@elastic.co
main.h in tools/abyssworker/client	36	-	2025-03-20	2025-03-20	1	2	99127082+cyril-t-f@users.no...	cyril.francois@elastic.co
payload.py in nightMARE/src/nightmare/malware/ghostpulse	119	8	2023-10-27	2024-10-19	5	4	7442091+peasead@users.norep...	salim.bitam@outlook.fr
pyproject.toml in nightMARE	18	-	2023-05-03	2024-10-19	10	6	7442091+peasead@users.norep...	salim.bitam@outlook.fr
warmcookie_http.py in tools/warmcookie	293	12	2024-10-02	2024-10-02	1	2	57736958+dstepanic@users.no...	daniel.stepanic@elastic.co
warmcookie_str_decrypt.py in tools/warmcookie	88	6	2024-06-06	2024-10-02	3	2	daniel.stepanic@elastic.co	daniel.stepanic@elastic.co
configuration.py in nightMARE/src/nightmare/malware/remcos	216	10	2024-04-23	2024-09-27	3	3	cyril.francois@elastic.co	salim.bitam@outlook.fr
configuration.py in nightMARE/src/nightmare/malware/blister	192	7	2023-08-25	2024-09-27	6	4	salim.bitam@outlook.fr	salim.bitam@outlook.fr
configuration.py in nightMARE/src/nightmare/malware/netwire	124	6	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
crypto.py in nightMARE/src/nightmare/malware/blister	118	10	2023-08-25	2024-09-27	3	3	salim.bitam@outlook.fr	salim.bitam@outlook.fr
utils.py in nightMARE/src/nightmare	96	14	2023-05-03	2024-09-27	9	6	7442091+peasead@users.norep...	salim.bitam@outlook.fr
configuration.py in nightMARE/src/nightmare/malware/smokeloader	81	4	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
lobshot_config_extractor.py in extractors/lobshot	59	6	2023-04-25	2024-09-27	2	3	57736958+dstepanic@users.no...	salim.bitam@outlook.fr
redlinestealer_config_extractor.py in extractors/redlinestealer	50	4	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
strela_stealer_payload_extractor.py in extractors/strelastealer	43	3	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
configuration.py in nightMARE/src/nightmare/malware/stealc	42	3	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
configuration.py in nightMARE/src/nightmare/malware/lobshot	29	3	2023-08-25	2024-09-27	3	3	salim.bitam@outlook.fr	salim.bitam@outlook.fr
crypto.py in nightMARE/src/nightmare/malware/stealc	24	1	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
payload.py in nightMARE/src/nightmare/malware/strelastealer	17	1	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
__init__.py in nightMARE/src/nightmare/malware/smokeloader	1	-	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
__init__.py in nightMARE/src/nightmare/malware/strelastealer	1	-	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
__init__.py in nightMARE/src/nightmare/malware/netwire	1	-	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
__init__.py in nightMARE/src/nightmare/malware/stealc	1	-	2024-09-27	2024-09-27	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
stix_to_ecs.py in tools/stix-to-ecs	425	31	2024-02-07	2024-08-28	9	4	7442091+peasead@users.norep...	cyril.francois@elastic.co
latro_str_decrypt.py in tools/latrodectus	90	4	2024-05-13	2024-05-20	3	3	daniel.stepanic@elastic.co	57736958+dstepanic@users.no...
win32.py in nightMARE/src/nightmare	74	5	2023-05-03	2024-05-14	5	5	7442091+peasead@users.norep...	57736958+dstepanic@users.no...
configuration.py in nightMARE/src/nightmare/malware/redlinestealer	52	5	2024-05-13	2024-05-14	2	2	daniel.stepanic@elastic.co	57736958+dstepanic@users.no...
crypto.py in nightMARE/src/nightmare/malware/latrodectus	9	1	2024-05-13	2024-05-14	2	2	daniel.stepanic@elastic.co	57736958+dstepanic@users.no...
__init__.py in nightMARE/src/nightmare/malware/blister	1	-	2024-05-14	2024-05-14	1	2	57736958+dstepanic@users.no...	daniel.stepanic@elastic.co
__init__.py in nightMARE/src/nightmare/malware/xorddos	1	-	2024-05-14	2024-05-14	1	2	57736958+dstepanic@users.no...	daniel.stepanic@elastic.co
__init__.py in nightMARE/src/nightmare/malware/latrodectus	1	-	2024-05-14	2024-05-14	1	2	57736958+dstepanic@users.no...	daniel.stepanic@elastic.co
__init__.py in nightMARE/src/nightmare/malware/redlinestealer	1	-	2024-05-13	2024-05-14	2	2	daniel.stepanic@elastic.co	57736958+dstepanic@users.no...
__init__.py in nightMARE/src/nightmare/malware/ghostpulse	1	-	2024-05-14	2024-05-14	1	2	57736958+dstepanic@users.no...	daniel.stepanic@elastic.co
__init__.py in nightMARE/src/nightmare/analysis/compression	1	-	2024-05-14	2024-05-14	1	2	57736958+dstepanic@users.no...	daniel.stepanic@elastic.co
remcos_configuration_extractor.py in extractors/remcos	74	5	2024-05-02	2024-05-02	1	1	cyril.francois@elastic.co	cyril.francois@elastic.co
custom_pe.py in nightMARE/src/nightmare/malware/icedid	271	21	2023-05-03	2024-04-29	3	3	7442091+peasead@users.norep...	99127082+cyril-t-f@users.no...
extract_payloads_from_core.py in tools/icedid/gzip-variant	77	5	2023-05-03	2024-04-29	3	3	7442091+peasead@users.norep...	99127082+cyril-t-f@users.no...
guloader_FixCFG.py in tools/guloader	37	2	2023-11-30	2024-04-29	6	5	daniel.stepanic@elastic.co	99127082+cyril-t-f@users.no...
bits.py in nightMARE/src/nightmare/analysis	31	12	2023-05-03	2024-04-29	5	4	7442091+peasead@users.norep...	99127082+cyril-t-f@users.no...
cast.py in nightMARE/src/nightmare	21	-	2024-04-23	2024-04-29	2	2	cyril.francois@elastic.co	99127082+cyril-t-f@users.no...
decrypt_file.py in tools/icedid	18	2	2023-05-03	2024-04-29	3	3	7442091+peasead@users.norep...	99127082+cyril-t-f@users.no...
read_configuration.py in tools/icedid/gzip-variant	17	2	2023-05-03	2024-04-29	3	3	7442091+peasead@users.norep...	99127082+cyril-t-f@users.no...
c2.py in nightMARE/src/nightmare/malware/remcos	10	2	2024-04-23	2024-04-29	2	2	cyril.francois@elastic.co	99127082+cyril-t-f@users.no...
__init__.py in nightMARE/src/nightmare/malware/remcos	1	-	2024-04-23	2024-04-29	2	2	cyril.francois@elastic.co	99127082+cyril-t-f@users.no...
clean_stix.py in tools/stix-to-ecs/extra	54	6	2024-02-07	2024-02-07	1	1	7442091+peasead@users.norep...	7442091+peasead@users.norep...
ctree_practical_example.py in tools/ida_scripts/hexrays_examples	39	4	2024-02-06	2024-02-06	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
microcode_traversal.py in tools/ida_scripts/hexrays_examples	39	6	2024-02-06	2024-02-06	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
ctree_traversal.py in tools/ida_scripts/hexrays_examples	34	3	2024-02-06	2024-02-06	1	1	salim.bitam@outlook.fr	salim.bitam@outlook.fr
ghostpulse_payload_extractor.py in tools/ghostpulse	69	5	2023-10-27	2023-10-27	1	2	7442091+peasead@users.norep...	salim.bitam@outlook.fr
fake_gzip.py in nightMARE/src/nightmare/malware/icedid	81	13	2023-05-03	2023-08-30	3	3	7442091+peasead@users.norep...	7442091+peasead@users.norep...