CybercentreCanada/Maco external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

CybercentreCanada/Maco

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/CybercentreCanada/Maco)

Close

CybercentreCanada / MacoView on GitHubMore

• External links
• Readme badge

Maco - Malware config extractor framework

☆47Apr 15, 2026Updated this week

Alternatives and similar repositories for Maco

Users that are interested in Maco are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• CybercentreCanada / configextractor-py

  View on GitHub
  Python Library for ConfigExtractor
  ☆16Feb 24, 2026Updated last month
• CAPESandbox / community

  View on GitHub
  Community modules for CAPE Sandbox
  ☆111Mar 25, 2026Updated 3 weeks ago
• sandialabs / mac-sandbox

  View on GitHub
  This is a malware analyzer for Mac OS X that extends the Cuckoo Sandbox project (https://cuckoosandbox.org/)
  ☆23Jul 8, 2016Updated 9 years ago
• CybercentreCanada / CCCS-Yara

  View on GitHub
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆119Mar 2, 2026Updated last month
• intezer / analyze-python-sdk

  View on GitHub
  Basic SDK for Intezer Platform API 2.0
  ☆33Updated this week
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• shellcromancer / DaysOfYARA-2023

  View on GitHub
  Rules Shared by the Community from 100 Days of YARA 2023 -
  ☆18Apr 10, 2023Updated 3 years ago
• RussianPanda95 / Configuration_extractors

  View on GitHub
  Configuration Extractors for Malware
  ☆125Apr 23, 2025Updated 11 months ago
• CybercentreCanada / assemblyline4_docs

  View on GitHub
  AssemblyLine4 documentation
  ☆28Updated this week
• lucky-luk3 / Infosec_Notebooks

  View on GitHub
  ☆20May 10, 2023Updated 2 years ago
• binalyze / tigma

  View on GitHub
  Sigma Engine implementation in TypeScript
  ☆28Mar 5, 2023Updated 3 years ago
• turbot / steampipe-plugin-virustotal

  View on GitHub
  Use SQL to instantly query file, domain, URL and IP scanning results from VirusTotal.
  ☆23Updated this week
• dod-cyber-crime-center / DC3-MWCP

  View on GitHub
  DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted …
  ☆342Feb 7, 2025Updated last year
• CybercentreCanada / assemblyline-docker-compose

  View on GitHub
  Docker compose Assemblyline 4 deployment (appliance and development)
  ☆17Apr 1, 2026Updated 2 weeks ago
• sisoma2 / malware_analysis

  View on GitHub
  Scripts, Yara rules and other files developed during malware investigations
  ☆27Aug 19, 2022Updated 3 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• CybercentreCanada / assemblyline-base

  View on GitHub
  Base components for Assemblyline 4 (Datastore, ODM, Filestore, Remote Datatypes, utils function, etc...)
  ☆71Updated this week
• sagarwani / APT32_OceanLotus_ThreatGroup

  View on GitHub
  All in one - Malware + Analysis by Cylance
  ☆11Nov 23, 2018Updated 7 years ago
• kirk-sayre-work / box-js

  View on GitHub
  A tool for studying JavaScript malware.
  ☆15Updated this week
• CERT-Polska / mwdb-core

  View on GitHub
  Malware repository component for samples & static configuration with REST API interface.
  ☆383Updated this week
• CybercentreCanada / assemblyline-v4-service

  View on GitHub
  Base service class from Assemblyline 4
  ☆15Apr 9, 2026Updated last week
• kevoreilly / capemon

  View on GitHub
  capemon: CAPE's monitor
  ☆146Mar 26, 2026Updated 3 weeks ago
• m-chrome / py-suricataparser

  View on GitHub
  Pure python parser for Snort/Suricata rules.
  ☆34Mar 13, 2024Updated 2 years ago
• MSAdministrator / msi-utils

  View on GitHub
  A python package that helps with analysis of MSI files
  ☆14Mar 28, 2021Updated 5 years ago
• ManasMahapatra / cuckoo-macOS

  View on GitHub
  This repository is a part of GSoC Project 2019 which intends to add the macOS support for Cuckoo Sandbox. This repository helps setting u…
  ☆11Aug 26, 2019Updated 6 years ago
• GPUs on demand by Runpod - Special Offer Available • Ad
  Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
• CERT-Bund / yara-exporter

  View on GitHub
  Exporting MISP event attributes to yara rules usable with Thor apt scanner
  ☆24Mar 27, 2017Updated 9 years ago
• mitre / yararules-python

  View on GitHub
  Easily scan with multiple yara rules from different sources.
  ☆14Mar 9, 2024Updated 2 years ago
• MonaxGT / gomalshare

  View on GitHub
  Go library MalShare API
  ☆13Apr 29, 2019Updated 6 years ago
• malpedia / signator-rules

  View on GitHub
  Collection of rules created using YARA-Signator over Malpedia
  ☆143Jan 6, 2026Updated 3 months ago
• DODC / turncoat

  View on GitHub
  ☆41Apr 5, 2025Updated last year
• bartblaze / Yara-rules

  View on GitHub
  Collection of private Yara rules.
  ☆379Jan 28, 2026Updated 2 months ago
• AyoobAli / ransomwatch-cli

  View on GitHub
  CLI interface to get Ransomware attacks data from ransomwhat.telemetry.ltd
  ☆13Feb 8, 2023Updated 3 years ago
• RustyNoob-619 / 100-Days-of-YARA-2024

  View on GitHub
  ☆21Apr 19, 2024Updated last year
• tiburon-security / sriracha-iq

  View on GitHub
  Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…
  ☆18Apr 10, 2020Updated 6 years ago
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• deadbits / yara-rules

  View on GitHub
  Collection of YARA signatures from individual research
  ☆44Nov 20, 2023Updated 2 years ago
• CybercentreCanada / assemblyline-ui

  View on GitHub
  Web interface and APIs for Assemblyline 4
  ☆21Apr 8, 2026Updated last week
• 100DaysofYARA / 2023

  View on GitHub
  Rules Shared by the Community from 100 Days of YARA 2023
  ☆78Apr 12, 2023Updated 3 years ago
• CybercentreCanada / assemblyline-service-cuckoo

  View on GitHub
  Assemblyline 4 Malware detonation service (Cuckoo)
  ☆17Feb 12, 2024Updated 2 years ago
• anyrun / blog-scripts

  View on GitHub
  ☆35Jan 13, 2026Updated 3 months ago
• juanandresgs / Proj-0xA11c

  View on GitHub
  ☆17Nov 13, 2024Updated last year
• zhunyoung / clingoTutorial

  View on GitHub
  ☆12Feb 6, 2023Updated 3 years ago