Alternatives and similar repositories for Open-source-Malware

Users that are interested in Open-source-Malware are comparing it to the libraries listed below

• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆98Updated 2 years ago
• kacos2000 / Prefetch-Browser
  Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's
  ☆62Updated 9 months ago
• knight0x07 / OneNoteAnalyzer
  A C# based tool for analysing malicious OneNote documents
  ☆116Updated 2 years ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆79Updated last year
• huebicode / abuselookup-gui
  A GUI to query the API of abuse.ch.
  ☆70Updated 3 years ago
• ACE-Responder / ace-proctree
  Create a cool process tree like https://twitter.com/ACEResponder.
  ☆35Updated 2 years ago
• embee-research / Icedid-file-decryptor
  Static Decryptor for IcedID Malware
  ☆18Updated 2 years ago
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆46Updated 2 years ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆42Updated last year
• g-les / 100DaysofYARA
  100 Days of YARA to be updated with rules & ideas as the year progresses
  ☆60Updated 2 years ago
• f0wl / blackCatConf
  Configuration Extractor for BlackCat Ransomware
  ☆30Updated 3 years ago
• dr4k0nia / tooling-playground
  A collection of small scripts and tools for deobfuscation and malware analysis.
  ☆66Updated 2 years ago
• vc0RExor / Quick-Analysis
  Quick analysis focusing on most important of a Malware or a Threat
  ☆41Updated 2 years ago
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆39Updated 3 years ago
• itaymigdal / malware-analysis-writeups
  Some of my Malware Analysis writeups
  ☆46Updated 2 years ago
• 0xThiebaut / PCAPeek
  A proof-of-concept re-assembler for reverse VNC traffic.
  ☆25Updated 2 years ago
• intelliroot-tech / InjectedCodeHunter
  “Intelliroot Code Injection Hunter” is a tool that can to help you identify injected malicious code. The tool can identify and extract po…
  ☆16Updated 3 years ago
• SafeBreach-Labs / aikido_wiper
  ☆68Updated 2 years ago
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆66Updated last year
• password123456 / CertVerify
  A scanner that files with compromised or untrusted code signing certificates written in python.
  ☆65Updated 2 years ago
• c3rb3ru5d3d53c / mwcfg
  A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck
  ☆130Updated last year
• QueenSquishy / plague
  Default Detections for EDR
  ☆96Updated last year
• alwashali / detection-validation
  Detection rule validation
  ☆41Updated last year
• jfmaes / talks-cons
  aggregated repo for all conferences and talks I am giving
  ☆17Updated 3 years ago
• ignacioj / WhacAMole
  Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…
  ☆42Updated last year
• CronUp / EnAnalisis
  ☆44Updated 2 weeks ago
• stairwell-inc / cobalt-strike-stager-parser
  ☆36Updated 2 years ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆54Updated 9 months ago
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• memprocfshunt / MemProcFSHunter
  A powershell parser for https://github.com/ufrisk/MemProcFS
  ☆44Updated 4 years ago