Alternatives and similar repositories for forensic-rs:

Users that are interested in forensic-rs are comparing it to the libraries listed below

• dfir-dd / dionysos
  Scanner for certain IoCs
  ☆11Updated 9 months ago
• WithSecureLabs / tau-engine
  A document tagging library
  ☆29Updated last year
• AbdulRhmanAlfaifi / lnk_parser
  lnk_parser is a full rust implementation to parse windows LNK files
  ☆16Updated 2 weeks ago
• theflakes / fmd
  Windows file metadata / forensic tool.
  ☆16Updated 4 months ago
• fr0gger / MalwareMuncher
  Malware Muncher is a proof-of-concept Python script that utilizes the Frida framework for binary instrumentation and API hooking, enablin…
  ☆42Updated last year
• AbdulRhmanAlfaifi / SDSParser-rs
  NTFS Security Descriptor Stream ($Secure:$SDS) parser
  ☆14Updated 2 years ago
• herosi / triage-collector
  ☆21Updated 3 months ago
• malienist / vovk
  Vovk is framework of tools that include a WinDbg extension that generates in-depth YARA rules for malware.
  ☆22Updated 4 months ago
• 0xThiebaut / PCAPeek
  A proof-of-concept re-assembler for reverse VNC traffic.
  ☆25Updated last year
• strozfriedberg / notatin
  A Windows registry file parser written in Rust
  ☆36Updated last year
• hasherezade / mal_unpack_py
  Python wrappers for mal_unpack
  ☆35Updated last year
• cod3nym / detection-rules
  Collection of my own detection rules
  ☆14Updated 10 months ago
• nasbench / SEDR-Internals
  Symantec EDR Internals
  ☆25Updated 3 years ago
• anyrun / YARA
  ☆14Updated last month
• k3idii / ION
  Indicators of Normality
  ☆12Updated 2 years ago
• jstrosch / FLARE-VM-configs
  These FLARE-VM configuration files are designed to be help setup a purpose-built installation, remove unnecessary packages to help stream…
  ☆13Updated 9 months ago
• leandrofroes / malware-research
  General malware analysis stuff
  ☆36Updated 4 months ago
• hashlookup / hashlookup-gui
  Provides a multi-platform Graphical User Interface for hashlookup
  ☆12Updated 6 months ago
• Cainor / Calendarinho
  Manage Your Large Team of Consultants
  ☆11Updated this week
• dr4k0nia / yara-rules
  A collection of my yara rules
  ☆35Updated last year
• 0xThiebaut / Signatures
  🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...
  ☆22Updated 9 months ago
• referefref / Rusty-Telephone
  Exfiltrate data over audio output from remote desktop sessions - Covert channel PoC
  ☆32Updated last month
• rkovar / ransomwarelegality
  Can you pay the ransom in your country?
  ☆13Updated last year
• fastfire / IoC_Attack_ESXi_Feb_2023
  Collection of IoCs available and related to attacks on ESXi infrastructures that occurred as of Friday February 3, 2023.
  ☆12Updated last year
• milankovo / YaraVM
  This repository contains an IDA processor for loading and disassembling compiled yara rules.
  ☆27Updated 2 weeks ago
• embee-research / CyberChef
  ☆14Updated last year
• OSTEsayed / OSTE-MalStatWare
  MalStatWare automates malware analysis with Python. Extract key details like file size, type, hash, path, and digital signature. It analy…
  ☆29Updated 8 months ago
• BlackSnufkin / CheckPlz
  Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.
  ☆10Updated 2 weeks ago
• malsearchs / Static-Reverse-Engineering-SRE
  SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool
  ☆51Updated 3 weeks ago
• randomaccess3 / block-parser
  Parser for Windows PowerShell script block logs
  ☆13Updated 2 weeks ago