Alternatives and similar repositories for assemblyline-base

Users that are interested in assemblyline-base are comparing it to the libraries listed below

• CybercentreCanada / CCCS-Yara
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆104Updated this week
• CybercentreCanada / assemblyline-core
  Core server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)
  ☆21Updated this week
• cerebrate-project / cerebrate
  Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…
  ☆88Updated last month
• target / halogen
  Automatically create YARA rules from malicious documents.
  ☆211Updated 3 years ago
• RH-ISAC / PyOTI
  Python library for threat intelligence
  ☆86Updated 4 months ago
• 3c7 / yaramanager
  Simple yara rule manager
  ☆66Updated 2 years ago
• mandiant / thiri-notebook
  The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…
  ☆155Updated 3 years ago
• MITRECND / malchive
  Various capabilities for static malware analysis.
  ☆78Updated 8 months ago
• telekom-security / malware_analysis
  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
  ☆114Updated last year
• The-DFIR-Report / Yara-Rules
  ☆69Updated 2 months ago
• OTRF / infosec-jupyterthon
  A community event for security researchers to share their favorite notebooks
  ☆107Updated last year
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 5 months ago
• CybercentreCanada / assemblyline_client
  Python client for Assemblyline 3 and 4 / Client python pour AssemblyLine 3 and 4
  ☆23Updated this week
• ForensicArtifacts / artifacts-kb
  Digital Forensics Artifacts Knowledge Base
  ☆81Updated last year
• ReconInfoSec / velociraptor-to-timesketch
  ☆7Updated 6 months ago
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆131Updated 8 months ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• 0xThiebaut / sigmai
  Import specific data sources into the Sigma generic and open signature format.
  ☆78Updated 3 years ago
• CrowdStrike / xwf-yara-scanner
  ☆87Updated last year
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆96Updated 2 years ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆52Updated 4 years ago
• kirk-sayre-work / ViperMonkey
  A VBA parser and emulation engine to analyze malicious macros.
  ☆96Updated this week
• MISP / misp-stix
  MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats
  ☆54Updated this week
• Maboalenen / DFIR
  Incident response teams usually working on the offline data, collecting the evidence, then analyze the data
  ☆44Updated 3 years ago
• hashlookup / hashlookup-forensic-analyser
  Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…
  ☆126Updated last year
• csirtgadgets / cif-v5
  The FASTEST way to consume threat intel.
  ☆68Updated 2 years ago
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆100Updated last month
• hpthreatresearch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆146Updated last year
• docintelapp / DocIntel
  Open Source Platform for storing, organizing, and searching documents related to cyber threats
  ☆165Updated last year
• hatching / triage
  Hatching Triage public command-line utility and API library.
  ☆65Updated last year