Alternatives and similar repositories for assemblyline-base

Users that are interested in assemblyline-base are comparing it to the libraries listed below

• CybercentreCanada / CCCS-Yara
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆113Updated 6 months ago
• telekom-security / malware_analysis
  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
  ☆119Updated last year
• target / halogen
  Automatically create YARA rules from malicious documents.
  ☆211Updated 3 years ago
• CybercentreCanada / assemblyline-core
  Core server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)
  ☆21Updated last week
• RH-ISAC / PyOTI
  Python library for threat intelligence
  ☆91Updated 10 months ago
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆98Updated 2 years ago
• 3c7 / yaramanager
  Simple yara rule manager
  ☆66Updated 2 years ago
• MITRECND / malchive
  Various capabilities for static malware analysis.
  ☆79Updated last year
• ForensicArtifacts / artifacts-kb
  Digital Forensics Artifacts Knowledge Base
  ☆88Updated 2 weeks ago
• tap-ir / tapir
  TAPIR is a multi-user, client/server, incident response framework
  ☆47Updated 3 years ago
• Neo23x0 / YARA-Performance-Guidelines
  A guide on how to write fast and memory friendly YARA rules
  ☆157Updated 10 months ago
• W3ndige / aurora
  Malware similarity platform with modularity in mind.
  ☆79Updated 4 years ago
• JPCERTCC / jpcert-yara
  JPCERT/CC public YARA rules repository
  ☆110Updated 3 weeks ago
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆107Updated 8 months ago
• mandiant / thiri-notebook
  The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…
  ☆154Updated 3 years ago
• Insikt-Group / Research
  Research indicators and detection rules
  ☆67Updated 2 years ago
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆136Updated last year
• hatching / triage
  Hatching Triage public command-line utility and API library.
  ☆74Updated 2 years ago
• OTRF / infosec-jupyterthon
  A community event for security researchers to share their favorite notebooks
  ☆109Updated last year
• NextronSystems / valhallaAPI
  Valhalla API Client
  ☆70Updated 2 years ago
• hashlookup / hashlookup-forensic-analyser
  Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…
  ☆127Updated 2 years ago
• Maboalenen / DFIR
  Incident response teams usually working on the offline data, collecting the evidence, then analyze the data
  ☆45Updated 3 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆75Updated last year
• docker-forensics-toolkit / toolkit
  A toolkit for the post-mortem examination of Docker containers from forensic HDD copies
  ☆106Updated last year
• d3sre / IntelligentProcessLifecycle
  The Intelligent Process Lifecycle of Active Cyber Defenders
  ☆33Updated 2 years ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆52Updated 5 years ago
• Neo23x0 / panopticon
  A YARA Rule Performance Measurement Tool
  ☆61Updated last year
• imp0rtp3 / Yobi
  Yara Based Detection Engine for web browsers
  ☆51Updated 4 years ago
• REMnux / salt-states
  This repository maintains the SaltStack state files for the REMnux distro.
  ☆53Updated 2 weeks ago
• andreafortuna / autotimeliner
  Automagically extract forensic timeline from volatile memory dump
  ☆132Updated last year