CERT-Polska/ursadb

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/CERT-Polska/ursadb)

CERT-Polska / ursadb

Trigram database written in C++, suited for malware indexing

☆129

Alternatives and similar repositories for ursadb

Users that are interested in ursadb are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

CERT-Polska / mquery
View on GitHub
YARA malware query accelerator (web frontend)
☆439Feb 3, 2026Updated 4 months ago
CERT-Polska / karton-misp-pusher
View on GitHub
☆16Apr 30, 2024Updated 2 years ago
cmu-sei / BigGrep
View on GitHub
A scalable search index for binary files
☆113Mar 15, 2018Updated 8 years ago
CERT-Polska / malduck
View on GitHub
Malduck is your ducky companion in malware analysis journeys
☆353Jun 22, 2025Updated 11 months ago
avast / yaramod
View on GitHub
Parsing of YARA rules into AST and building new rulesets in C++.
☆128Updated this week
GPU virtual machines on DigitalOcean Gradient AI • Ad
Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
RedHatProductSecurity / advisory-parser
View on GitHub
A library for parsing security advisories
☆13Apr 13, 2026Updated 2 months ago
wolfvan / YaraRET
View on GitHub
Carving tool based in Radare2 & Yara
☆16Oct 30, 2018Updated 7 years ago
CERT-Polska / mwdb-core
View on GitHub
Malware repository component for samples & static configuration with REST API interface.
☆387Updated this week
mattnotmitt / libyara-wasm
View on GitHub
PoC compilation of libyara into WASM, for potential future CyberChef integration
☆14Sep 18, 2022Updated 3 years ago
Cisco-Talos / BASS
View on GitHub
BASS - BASS Automated Signature Synthesizer
☆180Sep 19, 2018Updated 7 years ago
9b / netinfo
View on GitHub
Simple IP enrichment service and API wrapping PyASN and MaxMind GeoIP.
☆71Dec 8, 2022Updated 3 years ago
hillu / yara-rules-re
View on GitHub
[Moved to Codeberg] Tools for inspecting YARA bytecode
☆22Jul 1, 2020Updated 5 years ago
avast / yarang
View on GitHub
Alternative YARA scanning engine
☆73Aug 23, 2022Updated 3 years ago
arieljt / VTCodeBlocks-Maltego
View on GitHub
Maltego transforms to pivot between PE files based on their VirusTotal codeblocks
☆19Jul 15, 2021Updated 4 years ago
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
hatching / sflock
View on GitHub
Sample staging & detonation utility to be used in combination with Cuckoo Sandbox.
☆85Dec 5, 2023Updated 2 years ago
v-p-b / similarninja
View on GitHub
Binary matching with Binary Ninja
☆22Jul 8, 2024Updated last year
W3ndige / aurora
View on GitHub
Malware similarity platform with modularity in mind.
☆80Jul 18, 2021Updated 4 years ago
JusticeRage / Manalyze
View on GitHub
A static analyzer for PE executables.
☆1,124Mar 11, 2026Updated 3 months ago
CERT-Polska / karton
View on GitHub
Distributed malware processing framework based on Python, Redis and S3.
☆470Apr 9, 2026Updated 2 months ago
avast / yls
View on GitHub
YARA Language Server
☆74Feb 3, 2026Updated 4 months ago
TKCERT / winnti-detector
View on GitHub
Network detector for Winnti malware
☆21Mar 6, 2018Updated 8 years ago
AlienVault-OTX / yabin
View on GitHub
A Yara rule generator for finding related samples and hunting
☆165Sep 11, 2022Updated 3 years ago
Kafeine / public
View on GitHub
☆19Sep 2, 2018Updated 7 years ago
End-to-end encrypted email - Proton Mail • Ad
Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
humpalum / vscode-sigma
View on GitHub
☆18Oct 13, 2025Updated 8 months ago
D4-project / analyzer-d4-passivedns
View on GitHub
A Passive DNS backend and collector
☆33Jul 16, 2022Updated 3 years ago
malwarefrank / dnfile
View on GitHub
Parse .NET executable files.
☆89Jun 4, 2026Updated last week
CERT-Polska / n6
View on GitHub
Automated handling of data feeds for security teams
☆149Jun 4, 2026Updated last week
PUNCH-Cyber / stoq
View on GitHub
An open source framework for enterprise level automated analysis.
☆392Jun 27, 2022Updated 3 years ago
nccgroup / yaml2yara
View on GitHub
Generate bulk YARA rules from YAML input
☆22Feb 3, 2020Updated 6 years ago
Cluster25 / detection
View on GitHub
Threat Detection Rules (Snort/Sigma/Yara)
☆14Jan 23, 2024Updated 2 years ago
waaeh / FakeOpenSmtpRelay
View on GitHub
FakeOpenSmtpRelay.py is a Python3 script simulating a working open SMTP relay
☆13Mar 18, 2019Updated 7 years ago
Techlord-RCE / VB-Exe-Parser
View on GitHub
VB Exe Parser is an IDA script written in Python. This script will help you to parse VB program internal structures. It can find: Event, …
☆18Oct 7, 2016Updated 9 years ago
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
CIRCL / carl-hauser
View on GitHub
Open Source testing framework for image correlation, distance and analysis
☆44May 2, 2023Updated 3 years ago
KasperskyLab / klara
View on GitHub
Kaspersky's GReAT KLara
☆731Jul 24, 2024Updated last year
dutchcoders / lootbox
View on GitHub
Lootbox downloads open directories shared on Twitter.
☆35Mar 28, 2021Updated 5 years ago
mak / mlib
View on GitHub
Your bag of handy codes for malware researchers
☆120Mar 20, 2020Updated 6 years ago
JPCERTCC / jpcert-yara
View on GitHub
JPCERT/CC public YARA rules repository
☆111Mar 9, 2026Updated 3 months ago
necst / crave
View on GitHub
Framework to automatically test and explore the capabilities of generic AV engines
☆70Jan 15, 2019Updated 7 years ago
mandiant / dncil
View on GitHub
The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.
☆176May 18, 2026Updated 3 weeks ago