Alternatives and similar repositories for malduck

Users that are interested in malduck are comparing it to the libraries listed below

• CERT-Polska / mwdb-core
  Malware repository component for samples & static configuration with REST API interface.
  ☆359Updated this week
• CERT-Polska / karton
  Distributed malware processing framework based on Python, Redis and S3.
  ☆430Updated 2 weeks ago
• c3rb3ru5d3d53c / binlex
  A Binary Genetic Traits Lexer Framework
  ☆495Updated 4 months ago
• OALabs / research
  Research notes
  ☆125Updated 6 months ago
• hasherezade / mal_unpack
  Dynamic unpacker based on PE-sieve
  ☆736Updated 3 weeks ago
• MBCProject / mbc-markdown
  MBC content in markdown
  ☆457Updated last week
• mandiant / capa-rules
  Standard collection of rules for capa: the tool for enumerating the capabilities of programs
  ☆600Updated this week
• Neo23x0 / YARA-Performance-Guidelines
  A guide on how to write fast and memory friendly YARA rules
  ☆144Updated 4 months ago
• Karneades / malware-persistence
  Collection of malware persistence and hunting information. Be a persistent persistence hunter!
  ☆179Updated 5 months ago
• CERT-Polska / mquery
  YARA malware query accelerator (web frontend)
  ☆431Updated 3 months ago
• DissectMalware / XLMMacroDeobfuscator
  Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)
  ☆581Updated last year
• bartblaze / Yara-rules
  Collection of private Yara rules.
  ☆357Updated 2 months ago
• pan-unit42 / dotnetfile
  ☆106Updated last year
• OALabs / hashdb
  Assortment of hashing algorithms used in malware
  ☆363Updated 3 weeks ago
• xorhex / mlget
  A golang CLI tool to download malware from a variety of sources.
  ☆146Updated this week
• silence-is-best / c2db
  c2 traffic
  ☆189Updated 2 years ago
• binref / refinery
  High Octane Triage Analysis
  ☆740Updated this week
• fxb-cocacoding / yara-signator
  Automatic YARA rule generation for Malpedia
  ☆161Updated 2 years ago
• Bw3ll / sharem
  SHAREM is a shellcode analysis framework, capable of emulating more than 20,000 WinAPIs and virutally all Windows syscalls. It also conta…
  ☆394Updated last month
• fox-it / mkYARA
  Generating YARA rules based on binary code
  ☆212Updated 3 years ago
• claroty / arya
  Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.
  ☆249Updated 2 years ago
• fr0gger / unprotect
  Unprotect is a python tool for parsing PE malware and extract evasion techniques.
  ☆116Updated 2 years ago
• boozallen / MOTIF
  ☆149Updated 2 years ago
• c3rb3ru5d3d53c / mwcfg
  A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck
  ☆128Updated last year
• CAPESandbox / community
  Community modules for CAPE Sandbox
  ☆100Updated last week
• nbeede / BoomBox
  Automatic deployment of Cuckoo Sandbox malware lab using Packer and Vagrant
  ☆236Updated 2 years ago
• OALabs / Lab-Notes
  Code snips and notes
  ☆136Updated 3 years ago
• kevoreilly / capemon
  capemon: CAPE's monitor
  ☆123Updated 2 weeks ago
• cocaman / malware-bazaar
  Python scripts for Malware Bazaar
  ☆153Updated last year
• StrangerealIntel / Orion
  A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...
  ☆139Updated last year