Alternatives and similar repositories for assemblyline-v4-service:

Users that are interested in assemblyline-v4-service are comparing it to the libraries listed below

• CybercentreCanada / CCCS-Yara
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆101Updated 3 weeks ago
• ForensicArtifacts / artifacts-kb
  Digital Forensics Artifacts Knowledge Base
  ☆80Updated 10 months ago
• CybercentreCanada / assemblyline-core
  Core server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)
  ☆20Updated this week
• CybercentreCanada / assemblyline-ui
  Web interface and APIs for Assemblyline 4
  ☆20Updated this week
• CybercentreCanada / assemblyline-base
  Base components for Assemblyline 4 (Datastore, ODM, Filestore, Remote Datatypes, utils function, etc...)
  ☆69Updated this week
• OTRF / OSSEM-DD
  OSSEM Data Dictionaries
  ☆59Updated 2 months ago
• CAPESandbox / CAHI
  CAPE Auto-Hardened Installer
  ☆21Updated last month
• telekom-security / malware_analysis
  This repository contains analysis scripts, YARA rules, and additional IoCs related to our Telekom Security blog posts.
  ☆113Updated last year
• HASecuritySolutions / LogCampaign
  Provides detection capabilities and log conversion to evtx or syslog capabilities
  ☆52Updated 2 years ago
• center-for-threat-informed-defense / attack-powered-suit
  ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…
  ☆76Updated 4 months ago
• flowintel / flowintel
  An open source platform to support analysts to organise their case and tasks
  ☆66Updated this week
• hatching / triage
  Hatching Triage public command-line utility and API library.
  ☆66Updated last year
• mandiant / thiri-notebook
  The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat huntin…
  ☆155Updated 2 years ago
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆97Updated 3 months ago
• Velocidex / velociraptor-docs
  Documentation site for Velociraptor
  ☆44Updated last week
• Ruler-Project / ruler-project
  Remote access and Antivirus Logging Database
  ☆42Updated 10 months ago
• SigmaHQ / pySigma-backend-splunk
  pySigma Splunk backend
  ☆36Updated last month
• MISP / misp-stix
  MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats
  ☆53Updated last week
• AndrewRathbun / Anti-Forensics-VHDX
  A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…
  ☆26Updated 2 years ago
• 3c7 / bazaar
  Python based CLI for MalwareBazaar
  ☆36Updated 4 months ago
• CybercentreCanada / assemblyline4_docs
  AssemblyLine4 documentation
  ☆29Updated this week
• JPMinty / Detection_Engineering_Signatures
  YARA, SIGMA, SNORT Rules based on Malware Analysis
  ☆16Updated this week
• JHUAPL / Low-Regret-Methodology
  ☆27Updated 4 years ago
• NextronSystems / evtx-baseline
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆76Updated last year
• MITRECND / mitrecnd.github.io
  MITRE Shield website
  ☆19Updated 3 years ago
• 3c7 / common-osint-model
  Converting data from services like Censys and Shodan to a common data model
  ☆49Updated 6 months ago
• imp0rtp3 / Yobi
  Yara Based Detection Engine for web browsers
  ☆47Updated 3 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 3 months ago
• cerebrate-project / cerebrate
  Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…
  ☆86Updated this week
• MarkBaggett / apiify
  Wrap any binary into a cached webserver
  ☆53Updated 2 years ago