CybercentreCanada/Maco external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

CybercentreCanada/Maco

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/CybercentreCanada/Maco)

Close

CybercentreCanada / MacoView on GitHubMore

• External links
• Readme badge

Maco - Malware config extractor framework

☆51Jun 10, 2026Updated last week

Alternatives and similar repositories for Maco

Users that are interested in Maco are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• CybercentreCanada / configextractor-py

  View on GitHub
  Python Library for ConfigExtractor
  ☆16Jun 5, 2026Updated 2 weeks ago
• CAPESandbox / community

  View on GitHub
  Community modules for CAPE Sandbox
  ☆113May 15, 2026Updated last month
• sandialabs / mac-sandbox

  View on GitHub
  This is a malware analyzer for Mac OS X that extends the Cuckoo Sandbox project (https://cuckoosandbox.org/)
  ☆23Jul 8, 2016Updated 9 years ago
• CybercentreCanada / CCCS-Yara

  View on GitHub
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆119May 27, 2026Updated 3 weeks ago
• intezer / analyze-python-sdk

  View on GitHub
  Basic SDK for Intezer Platform API 2.0
  ☆33May 26, 2026Updated 3 weeks ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• shellcromancer / DaysOfYARA-2023

  View on GitHub
  Rules Shared by the Community from 100 Days of YARA 2023 -
  ☆18Apr 10, 2023Updated 3 years ago
• RussianPanda95 / Configuration_extractors

  View on GitHub
  Configuration Extractors for Malware
  ☆127Apr 23, 2025Updated last year
• CybercentreCanada / assemblyline4_docs

  View on GitHub
  AssemblyLine4 documentation
  ☆28Updated this week
• lucky-luk3 / Infosec_Notebooks

  View on GitHub
  ☆21May 10, 2023Updated 3 years ago
• binalyze / tigma

  View on GitHub
  Sigma Engine implementation in TypeScript
  ☆28Mar 5, 2023Updated 3 years ago
• tklengyel / drakvuf-builds

  View on GitHub
  ☆10Updated this week
• turbot / steampipe-plugin-virustotal

  View on GitHub
  Use SQL to instantly query file, domain, URL and IP scanning results from VirusTotal.
  ☆23Jun 1, 2026Updated 2 weeks ago
• justdan96 / 7zip_static

  View on GitHub
  7zip Static Build Dockerfile
  ☆14May 23, 2026Updated 3 weeks ago
• dod-cyber-crime-center / DC3-MWCP

  View on GitHub
  DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted …
  ☆348Updated this week
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• CybercentreCanada / assemblyline-docker-compose

  View on GitHub
  Docker compose Assemblyline 4 deployment (appliance and development)
  ☆17Jun 2, 2026Updated 2 weeks ago
• sisoma2 / malware_analysis

  View on GitHub
  Scripts, Yara rules and other files developed during malware investigations
  ☆27Aug 19, 2022Updated 3 years ago
• CybercentreCanada / assemblyline-base

  View on GitHub
  Base components for Assemblyline 4 (Datastore, ODM, Filestore, Remote Datatypes, utils function, etc...)
  ☆72Updated this week
• kirk-sayre-work / box-js

  View on GitHub
  A tool for studying JavaScript malware.
  ☆15Jun 9, 2026Updated last week
• sagarwani / APT32_OceanLotus_ThreatGroup

  View on GitHub
  All in one - Malware + Analysis by Cylance
  ☆11Nov 23, 2018Updated 7 years ago
• CERT-Polska / mwdb-core

  View on GitHub
  Malware repository component for samples & static configuration with REST API interface.
  ☆387Updated this week
• CybercentreCanada / assemblyline-v4-service

  View on GitHub
  Base service class from Assemblyline 4
  ☆16Updated this week
• jupyterj0nes / sabonis

  View on GitHub
  Sabonis, a Digital Forensics and Incident Response pivoting tool
  ☆20Mar 3, 2022Updated 4 years ago
• kevoreilly / capemon

  View on GitHub
  capemon: CAPE's monitor
  ☆149Jun 10, 2026Updated last week
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• m-chrome / py-suricataparser

  View on GitHub
  Pure python parser for Snort/Suricata rules.
  ☆34Mar 13, 2024Updated 2 years ago
• MSAdministrator / msi-utils

  View on GitHub
  A python package that helps with analysis of MSI files
  ☆14Mar 28, 2021Updated 5 years ago
• ManasMahapatra / cuckoo-macOS

  View on GitHub
  This repository is a part of GSoC Project 2019 which intends to add the macOS support for Cuckoo Sandbox. This repository helps setting u…
  ☆11Aug 26, 2019Updated 6 years ago
• CERT-Bund / yara-exporter

  View on GitHub
  Exporting MISP event attributes to yara rules usable with Thor apt scanner
  ☆25Mar 27, 2017Updated 9 years ago
• mitre / yararules-python

  View on GitHub
  Easily scan with multiple yara rules from different sources.
  ☆14Mar 9, 2024Updated 2 years ago
• MonaxGT / gomalshare

  View on GitHub
  Go library MalShare API
  ☆13Apr 29, 2019Updated 7 years ago
• malpedia / signator-rules

  View on GitHub
  Collection of rules created using YARA-Signator over Malpedia
  ☆145May 18, 2026Updated last month
• DODC / turncoat

  View on GitHub
  ☆41Apr 5, 2025Updated last year
• bartblaze / Yara-rules

  View on GitHub
  Collection of private Yara rules.
  ☆384Jan 28, 2026Updated 4 months ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• AyoobAli / ransomwatch-cli

  View on GitHub
  CLI interface to get Ransomware attacks data from ransomwhat.telemetry.ltd
  ☆13Feb 8, 2023Updated 3 years ago
• RustyNoob-619 / 100-Days-of-YARA-2024

  View on GitHub
  ☆21Apr 19, 2024Updated 2 years ago
• ConnorShride / box-ps

  View on GitHub
  Powershell sandboxing utility
  ☆19Jun 10, 2026Updated last week
• tiburon-security / sriracha-iq

  View on GitHub
  Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…
  ☆18Apr 10, 2020Updated 6 years ago
• deadbits / yara-rules

  View on GitHub
  Collection of YARA signatures from individual research
  ☆44Nov 20, 2023Updated 2 years ago
• CybercentreCanada / assemblyline-ui

  View on GitHub
  Web interface and APIs for Assemblyline 4
  ☆21Updated this week
• CybercentreCanada / assemblyline-service-cuckoo

  View on GitHub
  Assemblyline 4 Malware detonation service (Cuckoo)
  ☆16Feb 12, 2024Updated 2 years ago