CERT-Polska/ursadb

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/CERT-Polska/ursadb)

CERT-Polska / ursadb

Trigram database written in C++, suited for malware indexing

☆130

Alternatives and similar repositories for ursadb

Users that are interested in ursadb are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

CERT-Polska / mquery
View on GitHub
YARA malware query accelerator (web frontend)
☆437Feb 3, 2026Updated last month
CERT-Polska / karton-misp-pusher
View on GitHub
☆16Apr 30, 2024Updated last year
cmu-sei / BigGrep
View on GitHub
A scalable search index for binary files
☆113Mar 15, 2018Updated 8 years ago
CERT-Polska / malduck
View on GitHub
Malduck is your ducky companion in malware analysis journeys
☆350Jun 22, 2025Updated 9 months ago
avast / yaramod
View on GitHub
Parsing of YARA rules into AST and building new rulesets in C++.
☆129Jan 25, 2026Updated 2 months ago
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
RedHatProductSecurity / advisory-parser
View on GitHub
A library for parsing security advisories
☆13Feb 5, 2026Updated last month
wolfvan / YaraRET
View on GitHub
Carving tool based in Radare2 & Yara
☆16Oct 30, 2018Updated 7 years ago
CERT-Polska / mwdb-core
View on GitHub
Malware repository component for samples & static configuration with REST API interface.
☆381Updated this week
mattnotmitt / libyara-wasm
View on GitHub
PoC compilation of libyara into WASM, for potential future CyberChef integration
☆14Sep 18, 2022Updated 3 years ago
Cisco-Talos / BASS
View on GitHub
BASS - BASS Automated Signature Synthesizer
☆179Sep 19, 2018Updated 7 years ago
9b / netinfo
View on GitHub
Simple IP enrichment service and API wrapping PyASN and MaxMind GeoIP.
☆71Dec 8, 2022Updated 3 years ago
hillu / yara-rules-re
View on GitHub
Tools for inspecting YARA bytecode
☆21Jul 1, 2020Updated 5 years ago
avast / yarang
View on GitHub
Alternative YARA scanning engine
☆73Aug 23, 2022Updated 3 years ago
arieljt / VTCodeBlocks-Maltego
View on GitHub
Maltego transforms to pivot between PE files based on their VirusTotal codeblocks
☆19Jul 15, 2021Updated 4 years ago
End-to-end encrypted cloud storage - Proton Drive • Ad
Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
hatching / sflock
View on GitHub
Sample staging & detonation utility to be used in combination with Cuckoo Sandbox.
☆85Dec 5, 2023Updated 2 years ago
v-p-b / similarninja
View on GitHub
Binary matching with Binary Ninja
☆22Jul 8, 2024Updated last year
W3ndige / aurora
View on GitHub
Malware similarity platform with modularity in mind.
☆80Jul 18, 2021Updated 4 years ago
JusticeRage / Manalyze
View on GitHub
A static analyzer for PE executables.
☆1,114Mar 11, 2026Updated 2 weeks ago
CERT-Polska / karton
View on GitHub
Distributed malware processing framework based on Python, Redis and S3.
☆466Updated this week
avast / yls
View on GitHub
YARA Language Server
☆74Feb 3, 2026Updated last month
TKCERT / winnti-detector
View on GitHub
Network detector for Winnti malware
☆21Mar 6, 2018Updated 8 years ago
AlienVault-OTX / yabin
View on GitHub
A Yara rule generator for finding related samples and hunting
☆162Sep 11, 2022Updated 3 years ago
Kafeine / public
View on GitHub
☆19Sep 2, 2018Updated 7 years ago
DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
humpalum / vscode-sigma
View on GitHub
☆17Oct 13, 2025Updated 5 months ago
D4-project / analyzer-d4-passivedns
View on GitHub
A Passive DNS backend and collector
☆33Jul 16, 2022Updated 3 years ago
CERT-Polska / n6
View on GitHub
Automated handling of data feeds for security teams
☆148Dec 31, 2025Updated 2 months ago
malwarefrank / dnfile
View on GitHub
Parse .NET executable files.
☆86Jan 31, 2026Updated last month
nccgroup / yaml2yara
View on GitHub
Generate bulk YARA rules from YAML input
☆22Feb 3, 2020Updated 6 years ago
PUNCH-Cyber / stoq
View on GitHub
An open source framework for enterprise level automated analysis.
☆393Jun 27, 2022Updated 3 years ago
Cluster25 / detection
View on GitHub
Threat Detection Rules (Snort/Sigma/Yara)
☆14Jan 23, 2024Updated 2 years ago
waaeh / FakeOpenSmtpRelay
View on GitHub
FakeOpenSmtpRelay.py is a Python3 script simulating a working open SMTP relay
☆13Mar 18, 2019Updated 7 years ago
Techlord-RCE / VB-Exe-Parser
View on GitHub
VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …
☆18Oct 7, 2016Updated 9 years ago
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
CIRCL / carl-hauser
View on GitHub
Open Source testing framework for image correlation, distance and analysis
☆44May 2, 2023Updated 2 years ago
KasperskyLab / klara
View on GitHub
Kaspersky's GReAT KLara
☆733Jul 24, 2024Updated last year
dutchcoders / lootbox
View on GitHub
Lootbox downloads open directories shared on Twitter.
☆35Mar 28, 2021Updated 4 years ago
JPCERTCC / jpcert-yara
View on GitHub
JPCERT/CC public YARA rules repository
☆109Mar 9, 2026Updated 2 weeks ago
mak / mlib
View on GitHub
Your bag of handy codes for malware researchers
☆120Mar 20, 2020Updated 6 years ago
necst / crave
View on GitHub
Framework to automatically test and explore the capabilities of generic AV engines
☆70Jan 15, 2019Updated 7 years ago
mandiant / dncil
View on GitHub
The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.
☆171Mar 16, 2026Updated last week