CybercentreCanada/assemblyline external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

CybercentreCanada/assemblyline

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/CybercentreCanada/assemblyline)

Close

CybercentreCanada / assemblylineView on GitHubMore

• External links
• Readme badge

AssemblyLine 4: File triage and malware analysis

☆448Feb 26, 2026Updated last week

Alternatives and similar repositories for assemblyline

Users that are interested in assemblyline are comparing it to the libraries listed below

• CybercentreCanada / assemblyline4_docs

  View on GitHub
  AssemblyLine4 documentation
  ☆28Feb 25, 2026Updated last week
• CybercentreCanada / assemblyline-base

  View on GitHub
  Base components for Assemblyline 4 (Datastore, ODM, Filestore, Remote Datatypes, utils function, etc...)
  ☆71Feb 26, 2026Updated last week
• CybercentreCanada / assemblyline-ui

  View on GitHub
  Web interface and APIs for Assemblyline 4
  ☆20Updated this week
• CybercentreCanada / CCCS-Yara

  View on GitHub
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆116Updated this week
• CERT-Polska / mwdb-core

  View on GitHub
  Malware repository component for samples & static configuration with REST API interface.
  ☆379Updated this week
• CybercentreCanada / assemblyline_client

  View on GitHub
  Python client for Assemblyline 3 and 4 / Client python pour AssemblyLine 3 and 4
  ☆23Feb 24, 2026Updated last week
• CybercentreCanada / assemblyline-core

  View on GitHub
  Core server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)
  ☆21Feb 26, 2026Updated last week
• kevoreilly / CAPEv2

  View on GitHub
  Malware Configuration And Payload Extraction
  ☆3,031Feb 27, 2026Updated last week
• CybercentreCanada / assemblyline-v4-service

  View on GitHub
  Base service class from Assemblyline 4
  ☆15Updated this week
• CERT-Polska / drakvuf-sandbox

  View on GitHub
  DRAKVUF Sandbox - automated hypervisor-level malware analysis system
  ☆1,269Updated this week
• CybercentreCanada / assemblyline-docker-compose

  View on GitHub
  Docker compose Assemblyline 4 deployment (appliance and development)
  ☆17Feb 26, 2026Updated last week
• target / strelka

  View on GitHub
  Real-time, container-based file scanning at enterprise scale
  ☆977Updated this week
• W3ndige / aurora

  View on GitHub
  Malware similarity platform with modularity in mind.
  ☆80Jul 18, 2021Updated 4 years ago
• hm-seclab / YAFRA

  View on GitHub
  YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.
  ☆27Dec 14, 2021Updated 4 years ago
• salesforce / multithreaded-exfil-detection

  View on GitHub
  A simple way of detecting multithreaded exfiltration in Zeek.
  ☆15May 1, 2025Updated 10 months ago
• CERT-Polska / karton

  View on GitHub
  Distributed malware processing framework based on Python, Redis and S3.
  ☆462Updated this week
• CybercentreCanada / assemblyline-service-cuckoo

  View on GitHub
  Assemblyline 4 Malware detonation service (Cuckoo)
  ☆17Feb 12, 2024Updated 2 years ago
• threathunters-io / laurel

  View on GitHub
  Transform Linux Audit logs for SIEM usage
  ☆815Feb 27, 2026Updated last week
• EXC3L-ONE / awesome-synapse

  View on GitHub
  List of Awesome Vertex Synapse Resources
  ☆28Aug 6, 2024Updated last year
• ail-project / ail-yara-rules

  View on GitHub
  A set of YARA rules for the AIL framework to detect leak or information disclosure
  ☆41Jan 31, 2025Updated last year
• hashlookup / hashlookup-forensic-analyser

  View on GitHub
  Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…
  ☆128Sep 24, 2023Updated 2 years ago
• farsightsec / dnsdbflex

  View on GitHub
  command line tool to use the DNSDB Flexible Search API extensions.
  ☆16Aug 5, 2024Updated last year
• fox-it / acquire

  View on GitHub
  acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.
  ☆117Feb 25, 2026Updated last week
• cudeso / dfir-iris-misp-timesketch

  View on GitHub
  Scripts to integrate DFIR-IRIS, MISP and TimeSketch
  ☆35Feb 2, 2022Updated 4 years ago
• fox-it / dissect

  View on GitHub
  Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic artefacts…
  ☆1,085Feb 25, 2026Updated last week
• CyCat-project / cycat-taxonomy

  View on GitHub
  CyCAT.org taxonomies
  ☆15May 22, 2021Updated 4 years ago
• pandora-analysis / pandora

  View on GitHub
  Pandora is an analysis framework to discover if a file is suspicious and conveniently show the results
  ☆275Feb 26, 2026Updated last week
• MISP / misp-training-lea

  View on GitHub
  Practical Information Sharing between Law Enforcement and CSIRT communities using MISP
  ☆35Sep 18, 2023Updated 2 years ago
• kacos2000 / Evtx_Log_Browser

  View on GitHub
  Evtx Log (xml) Browser
  ☆56Mar 12, 2023Updated 2 years ago
• wagga40 / Zircolite

  View on GitHub
  A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs
  ☆786Feb 22, 2026Updated last week
• DFIR-ORC / dfir-orc

  View on GitHub
  Forensics artefact collection tool for systems running Microsoft Windows
  ☆433Mar 26, 2025Updated 11 months ago
• aff4 / Standard

  View on GitHub
  AFF4 Standard Documents
  ☆29Feb 4, 2022Updated 4 years ago
• log2timeline / dftimewolf

  View on GitHub
  A framework for orchestrating forensic collection, processing and data export
  ☆343Feb 18, 2026Updated 2 weeks ago
• drb-ra / C2IntelFeeds

  View on GitHub
  Automatically created C2 Feeds
  ☆667Updated this week
• mandiant / capa

  View on GitHub
  The FLARE team's open-source tool to identify capabilities in executable files.
  ☆5,862Updated this week
• ail-project / ail-feeder-twitter

  View on GitHub
  External twitter feeder for AIL framework
  ☆16Apr 16, 2023Updated 2 years ago
• blueteam0ps / det-eng-samples

  View on GitHub
  This repository contains sample log data that were collected after running adversary simulations in Microsoft 365
  ☆24Oct 9, 2024Updated last year
• mandiant / capa-rules

  View on GitHub
  Standard collection of rules for capa: the tool for enumerating the capabilities of programs
  ☆694Feb 26, 2026Updated last week
• flowintel / flowintel

  View on GitHub
  An open source platform to support analysts to organise their case and tasks
  ☆126Feb 26, 2026Updated last week