Ahmed-Emad-Nasr/Malware-Analysis-and-Prevention-Strategy

GitHub: Ahmed-Emad-Nasr/Malware-Analysis-and-Prevention-Strategy

构建了一个集成Wazuh、Suricata、YARA等工具的Mini SOC环境，通过Atomic Red Team模拟攻击来评估和增强安全检测与自动化响应能力。

Stars: 1 | Forks: 0

# 🛡️ 恶意软件分析与防御策略 ### 作者：**Ahmed Emad Eldeen Abdelmoneam** 使用 **Wazuh SIEM 和 EDR**、**Atomic Red Team**、**YARA**、**Suricata (IDS)**、**VirusTotal 自动清除**、**3omda 自定义规则**、**SocSOCFortress Wazuh 规则** ![License](https://img.shields.io/badge/License-MIT-blue.svg) ![Contributions Welcome](https://img.shields.io/badge/Contributions-Welcome-brightgreen.svg) ![Platform](https://img.shields.io/badge/Platform-Linux%20%7C%20Windows-lightgrey.svg) ![Security](https://img.shields.io/badge/SOC-Security_Operations_Center-critical.svg) ![Wazuh](https://img.shields.io/badge/Wazuh-%23000000?style=flat&logo=wazuh&logoColor=white) ![Atomic Red Team](https://img.shields.io/badge/Atomic_Red_Team-%23FF6A00?style=flat&logo=atom&logoColor=white) ![Suricata](https://img.shields.io/badge/Suricata-%230078D7?style=flat&logo=suricata&logoColor=white) ![Hacking / Kali](https://img.shields.io/badge/Hacking-%23A0B0C0?style=flat&logo=kali-linux&logoColor=white) ![YARA](https://img.shields.io/badge/YARA-%23219827?style=flat&logo=yara&logoColor=white) ![VirusTotal](https://img.shields.io/badge/VirusTotal-%23FF4747?style=flat&logo=virustotal&logoColor=white) ![FIM (File Integrity Monitoring)](https://img.shields.io/badge/FIM-%23663399?style=flat&logo=sqlite&logoColor=white) ![Auditing & Logging](https://img.shields.io/badge/Auditing_%26_Logging-%23007ACC?style=flat&logo=elastic&logoColor=white) ![Firewall Hardening](https://img.shields.io/badge/Firewall-Hardening-%230F172A?style=flat&logo=linux&logoColor=white)