Alternatives and similar repositories for malduck

Users that are interested in malduck are comparing it to the libraries listed below

• CERT-Polska / mwdb-core
  Malware repository component for samples & static configuration with REST API interface.
  ☆354Updated last month
• CERT-Polska / karton
  Distributed malware processing framework based on Python, Redis and S3.
  ☆426Updated 2 weeks ago
• c3rb3ru5d3d53c / binlex
  A Binary Genetic Traits Lexer Framework
  ☆494Updated 3 months ago
• mandiant / capa-rules
  Standard collection of rules for capa: the tool for enumerating the capabilities of programs
  ☆587Updated this week
• Karneades / malware-persistence
  Collection of malware persistence and hunting information. Be a persistent persistence hunter!
  ☆179Updated 4 months ago
• Neo23x0 / YARA-Performance-Guidelines
  A guide on how to write fast and memory friendly YARA rules
  ☆143Updated 3 months ago
• OALabs / hashdb
  Assortment of hashing algorithms used in malware
  ☆362Updated last week
• binref / refinery
  High Octane Triage Analysis
  ☆728Updated last week
• CERT-Polska / mquery
  YARA malware query accelerator (web frontend)
  ☆428Updated 2 months ago
• fox-it / mkYARA
  Generating YARA rules based on binary code
  ☆210Updated 3 years ago
• OALabs / research
  Research notes
  ☆124Updated 5 months ago
• hasherezade / mal_unpack
  Dynamic unpacker based on PE-sieve
  ☆732Updated last week
• MBCProject / mbc-markdown
  MBC content in markdown
  ☆452Updated 2 months ago
• silence-is-best / c2db
  c2 traffic
  ☆188Updated 2 years ago
• fxb-cocacoding / yara-signator
  Automatic YARA rule generation for Malpedia
  ☆160Updated 2 years ago
• DissectMalware / XLMMacroDeobfuscator
  Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)
  ☆579Updated last year
• LDO-CERT / orochi
  The Volatility Collaborative GUI
  ☆243Updated this week
• sophos / yaraml_rules
  Security ML models encoded as Yara rules
  ☆214Updated last year
• StrangerealIntel / DailyIOC
  IOC from articles, tweets for archives
  ☆313Updated last year
• OALabs / Lab-Notes
  Code snips and notes
  ☆137Updated 3 years ago
• d4rk-d4nph3 / Ransomware-Reports
  This repo is a collection of Ransomware reports from vendors, researchers, etc.
  ☆118Updated 2 years ago
• xorhex / mlget
  A golang CLI tool to download malware from a variety of sources.
  ☆146Updated last year
• CybercentreCanada / CCCS-Yara
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆104Updated 3 weeks ago
• c3rb3ru5d3d53c / mwcfg
  A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck
  ☆128Updated last year
• bartblaze / Yara-rules
  Collection of private Yara rules.
  ☆354Updated last month
• malpedia / signator-rules
  Collection of rules created using YARA-Signator over Malpedia
  ☆129Updated 6 months ago
• claroty / arya
  Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.
  ☆248Updated 2 years ago
• pan-unit42 / dotnetfile
  ☆104Updated last year
• monnappa22 / HollowFind
  Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …
  ☆137Updated 2 years ago
• danielplohmann / apiscout
  This project aims at simplifying Windows API import recovery on arbitrary memory dumps
  ☆249Updated 2 years ago