Alternatives and similar repositories for Malcrow

Users that are interested in Malcrow are comparing it to the libraries listed below

• moval0x1 / NoDelete
  NoDelete is a tool that assists in malware analysis by locking a folder where malware drops files before deleting them.
  ☆49Updated last month
• tstromberg / sunlight
  Linux #rootkit and #malware revealer
  ☆30Updated last year
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆91Updated last year
• bartblaze / FARA
  Repository that contains a set of purposefully erroneous Yara rules.
  ☆61Updated 5 months ago
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆69Updated last year
• rapid7 / Rapid7-Labs
  Rapid7 Labs operates as the division of Rapid7 focused on threat research. It is renowned for providing comprehensive threat intelligence…
  ☆73Updated 2 weeks ago
• jonny-jhnson / PowerParse
  PowerShell PE Parser
  ☆62Updated last year
• DebugPrivilege / OpenProject
  A practical resource on using open-source tools for Incident Response. This repo shares workflows, tool setups, and steps for responding …
  ☆37Updated last year
• 100DaysofYARA / 2025
  Rules shared by the community from 100 Days of YARA 2025
  ☆37Updated 11 months ago
• Cyb3r-Monk / Microsoft-Vulnerable-Driver-Block-Lists
  Microsoft Vulnerable Driver Block Lists in CSV and JSON for SIEM lookups
  ☆53Updated 3 months ago
• dr4k0nia / yara-rules
  A collection of my yara rules
  ☆34Updated 2 years ago
• thinkst / defending-off-the-land
  Assortment of scripts and tools for our Blackhat EU 2024 talk
  ☆102Updated 10 months ago
• D4RK-R4BB1T / BlackBasta-Chats
  ☆49Updated 10 months ago
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆53Updated 11 months ago
• SafeBreach-Labs / DoubleDrive
  A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files
  ☆127Updated last year
• jonny-jhnson / ETWInspector
  ☆181Updated 8 months ago
• pancak3lullz / SECurityTr8Ker
  SECurityTr8Ker monitors the SEC's RSS feed for 8-K filings with cybersecurity incident disclosures.
  ☆90Updated 6 months ago
• montysecurity / YaraMonitor
  Framework for Monitoring File Ingestion Source for Yara Matches
  ☆50Updated 9 months ago
• dobin / DetonatorAgent
  Detonate malware on VMs and get logs & detection status
  ☆73Updated this week
• reecdeep / segugio
  Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…
  ☆150Updated last year
• c2links / NoWhere2Hide
  C2 Active Scanner
  ☆60Updated last year
• RussianPanda95 / Configuration_extractors
  Configuration Extractors for Malware
  ☆121Updated 8 months ago
• LOTTunnels / LOTTunnels.github.io
  ☆117Updated 3 weeks ago
• rad9800 / PMD
  ☆157Updated 8 months ago
• MazX0p / CobaltSentry
  ☆24Updated 10 months ago
• markkcc / crxaminer
  Examine Chrome extensions for security issues
  ☆90Updated last month
• winsecurity / MaleficentVM
  This is practice VM for malware development
  ☆170Updated last month
• closed-systems / strangerstrings
  A little tool to filter the stranger strings from a binary so you can analyze the good ones
  ☆52Updated 3 months ago
• BushidoUK / Ransomware-Vulnerability-Matrix
  A collection of CVEs weaponized by ransomware operators
  ☆128Updated 2 months ago
• 0xAIDR / AIDR-Bastion
  A comprehensive GenAI protection system designed to protect against malicious prompts, injection attacks, and harmful content. System inc…
  ☆95Updated 2 months ago