Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/bbbbbrie/awesome-ransomware

Curated list of ransomware-related resources; awesome style.
https://github.com/bbbbbrie/awesome-ransomware

List: awesome-ransomware

awesome ransomware

Last synced: 16 days ago
JSON representation

Curated list of ransomware-related resources; awesome style.

Awesome Lists containing this project

README

        

# Awesome Ransomware ![Awesome](https://cdn.rawgit.com/sindresorhus/awesome/d7305f38d29fed78fa85652e3a63e154dd8e8829/media/badge.svg) ![GitHub last commit](https://img.shields.io/github/last-commit/bbbbbrie/awesome-ransomware)
A curated list of ransomware-related resources.

## Books
- [Preventing Ransomware](https://www.packtpub.com/application-development/preventing-ransomware)
- [Ransomware Revealed](https://www.apress.com/gp/book/9781484242544)
- [Ransomware: Defending Against Digital Extortion](https://www.oreilly.com/library/view/ransomware/9781491967874/) - The O'Reilly book on ransomware
- [The Ransomware Hunting Team](https://us.macmillan.com/books/9780374603304/theransomwarehuntingteam)

## Decryption Tools
- [Emsisoft Ransomware Decryption Tools](https://www.emsisoft.com/ransomware-decryption-tools/)
- [Free Ransomware Decrypters | Kaspersky](https://noransom.kaspersky.com/)
- [List of Decryption Tools | Heimdal Security](https://heimdalsecurity.com/blog/ransomware-decryption-tools/) - A long list of decryption tools
- [No More Ransom](https://www.nomoreransom.org)
- [Trend Micro Ransomware File Decryptor](https://success.trendmicro.com/solution/1114221-downloading-and-using-the-trend-micro-ransomware-file-decryptor)
- [The Windows Club](https://www.thewindowsclub.com/list-ransomware-decryptor-tools) - A list of decryption tools

## Guides and Playbooks

- [Ransomware Playbook](https://www.rapid7.com/globalassets/_pdfs/whitepaperguide/rapid7-insightidr-ransomware-playbook.pdf) - Rapid7
- [Ransomware playbook (ITSM.00.099)](https://www.cyber.gc.ca/en/guidance/ransomware-playbook-itsm00099) - Canadian Centre for Cyber Security
- [PDF](https://www.cyber.gc.ca/sites/default/files/cyber/2021-12/itsm00099-ransomware-playbook-2021-final3-en.pdf)
- [Ransomware Template](https://github.com/counteractive/incident-response-plan-template/blob/master/playbooks/playbook-ransomware.md) from Counteractive
- [Microsoft DART ransomware approach and best practices](https://learn.microsoft.com/en-us/security/operations/incident-response-playbook-dart-ransomware-approach)

## Infographics
- [Ransomware Families](https://heimdalsecurity.com/blog/wp-content/uploads/ransowmare-families-f-secure-1.jpg) - A diagram from F-Secure of ransomware families from 2012-2017.

## Lists of Ransomware Families
- [NJCCIC](https://www.cyber.nj.gov/threat-profiles/ransomware/) - From AutoLocky to Zepto
- [Ransomware Overview](https://docs.google.com/spreadsheets/d/1TWS238xacAto-fLKh1n5uTsdijWdCEsGIM0Y0Hvmc5g/pubhtml) - A Google Sheets document shepherded by `@nyxbone`

## Observing Ransomware Groups

- [Ransomwatch](https://ransomwatch.telemetry.ltd/#/README) Observatory
- [joshhighet/ransomwatch](https://github.com/joshhighet/ransomwatch) on GitHub
- [Ransomlook](https://www.ransomlook.io/) - Notes and info on 150+ groups

## Resources
- [Bleeping Computer's Ransomware Forum](https://www.bleepingcomputer.com/forums/f/239/ransomware-help-tech-support/)
- [ID Ransomware](https://id-ransomware.malwarehunterteam.com/)
- [Ransomware identification for the judicious analyst](https://www.gdatasoftware.com/blog/2019/06/31666-ransomware-identification-for-the-judicious-analyst)
- [Ransomware Reports](https://github.com/d4rk-d4nph3/Ransomware-Reports)
- [Yara rules for detecting ransomware](https://github.com/advanced-threat-research/Yara-Rules/tree/master/ransomware)
- [/r/ransomware](https://www.reddit.com/r/Ransomware/)
- [Ransomware Task Force](https://securityandtechnology.org/ransomwaretaskforce/)
- [RTF Report: Combating Ransomware](https://securityandtechnology.org/ransomwaretaskforce/report/)

## Miscellaneous
- [EMPHASIS: Economical, Psychological and Societal Impact of Ransomware](https://www.emphasis.ac.uk/)
- [Ransomware: Past, Present and Future](https://blog.talosintelligence.com/2016/04/ransomware.html) - Cisco Talos blog post on ransomware, vintage 2016
- [Darkode](https://www.wnycstudios.org/podcasts/radiolab/articles/darkode) - A well-produced Radiolab episode that follows a mother-daughter pair in the wake of a ransomware incident
- [A timeline of major ransomware events](https://kraftbusiness.com/wp-content/uploads/2019/01/history-evolution-of-ransomware.png)
- [Ransomware Attacks Map](https://statescoop.com/ransomware-map/) - An interactive map of known ransomware incidents in the US
- [RAASNet](https://github.com/leonv024/RAASNet)
- [Rensenware](https://en.wikipedia.org/wiki/Rensenware)
- [Do you want to play a game? Ransomware asks for high score instead of money](https://arstechnica.com/gaming/2017/04/do-you-want-to-play-a-game-ransomware-asks-for-high-score-instead-of-money/)

## Videos

- [SANS Ransomware Summit 2022](https://www.youtube.com/playlist?list=PLtgaAEEmVe6AGQj2LhA4UnN0XolmeYw9_)

## Related Awesome Lists
- [awesome-incident-reponse](https://github.com/meirwah/awesome-incident-response)
- [awesome-malware-analysis](https://github.com/rshipp/awesome-malware-analysis)