Alternatives and similar repositories for assemblyline-v4-service:

Users that are interested in assemblyline-v4-service are comparing it to the libraries listed below

• CybercentreCanada / CCCS-Yara
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆99Updated this week
• CybercentreCanada / assemblyline-core
  Core server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)
  ☆19Updated this week
• CybercentreCanada / assemblyline-ui
  Web interface and APIs for Assemblyline 4
  ☆20Updated this week
• HASecuritySolutions / LogCampaign
  Provides detection capabilities and log conversion to evtx or syslog capabilities
  ☆52Updated 2 years ago
• iknowjason / Velociraptor_Azure
  A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small Velociraptor R&D lab.
  ☆20Updated 3 years ago
• ForensicArtifacts / artifacts-kb
  Digital Forensics Artifacts Knowledge Base
  ☆77Updated 8 months ago
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆23Updated 3 years ago
• CybercentreCanada / assemblyline-service-cuckoo
  Assemblyline 4 Malware detonation service (Cuckoo)
  ☆17Updated last year
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆96Updated last month
• Velocidex / velociraptor-docs
  Documentation site for Velociraptor
  ☆41Updated this week
• 3c7 / yaramanager
  Simple yara rule manager
  ☆66Updated 2 years ago
• Maboalenen / DFIR
  Incident response teams usually working on the offline data, collecting the evidence, then analyze the data
  ☆44Updated 3 years ago
• siriussecurity / mitre-attack-mapping
  Mapping your datasources and detections to the MITRE ATT&CK Navigator framework.
  ☆57Updated 4 years ago
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆54Updated 7 months ago
• AndrewRathbun / Anti-Forensics-VHDX
  A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…
  ☆25Updated 2 years ago
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆95Updated last year
• evild3ad / Get-MiniTimeline
  Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE
  ☆29Updated 8 months ago
• thremulation-station / thremulation-station
  Small-scale threat emulation and detection range built on Elastic and Atomic Redteam.
  ☆37Updated last year
• InQuest / ThreatKB
  Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
  ☆98Updated last month
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆68Updated last year
• mitre / stockpile
  A CALDERA plugin
  ☆74Updated 3 months ago
• 00010111 / smbtimeline
  ☆33Updated 3 months ago
• clausing / scripts
  ☆55Updated 3 weeks ago
• Silv3rHorn / evtx2json
  evtx2json extracts events of interest from event logs, dedups them, and exports them to json.
  ☆41Updated 3 years ago
• Ruler-Project / ruler-project
  Remote access and Antivirus Logging Database
  ☆43Updated 9 months ago
• telekom-security / malware_analysis
  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
  ☆110Updated last year
• kirk-sayre-work / box-js
  A tool for studying JavaScript malware.
  ☆14Updated last week
• CybercentreCanada / assemblyline-base
  Base components for Assemblyline 4 (Datastore, ODM, Filestore, Remote Datatypes, utils function, etc...)
  ☆68Updated this week
• jstrosch / graph-maldoc-similar-images
  A script that extracts embedded images from Office Open XML (OOXML) documents and generates image hash similarity graphs that cluster vis…
  ☆20Updated 3 years ago
• CybercentreCanada / assemblyline_client
  Python client for Assemblyline 3 and 4 / Client python pour AssemblyLine 3 and 4
  ☆23Updated last month