Alternatives and similar repositories for APT-Ecosystem:

Users that are interested in APT-Ecosystem are comparing it to the libraries listed below

• gleeda / memtriage
  Allows you to quickly query a Windows machine for RAM artifacts
  ☆219Updated 4 years ago
• sapphirex00 / Threat-Hunting
  Personal compilation of APT malware from whitepaper releases, documents and own research
  ☆259Updated 6 years ago
• arieljt / VTCodeSimilarity-YaraGen
  ☆97Updated 4 years ago
• 401trg / detections
  This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…
  ☆121Updated 3 years ago
• WithSecureLabs / snake
  snake - a malware storage zoo
  ☆219Updated last year
• brakmic / Sinkholes
  Malware Sinkhole List in various formats
  ☆102Updated 2 years ago
• sysopfb / malware_decoders
  Static based decoders for malware samples
  ☆92Updated 4 years ago
• d00rt / emotet_research
  ☆134Updated 6 years ago
• RomanEmelyanov / CobaltStrikeForensic
  Toolset for research malware and Cobalt Strike beacons
  ☆207Updated 2 years ago
• AlienVault-OTX / yabin
  A Yara rule generator for finding related samples and hunting
  ☆158Updated 2 years ago
• intezer / yara-rules
  ☆125Updated 2 weeks ago
• advanced-threat-research / IOCs
  Repository containing IOCs, CSV and MISP JSON from our blogs
  ☆79Updated 3 years ago
• fxb-cocacoding / yara-signator
  Automatic YARA rule generation for Malpedia
  ☆157Updated 2 years ago
• silascutler / MalPipe
  Malware/IOC ingestion and processing engine
  ☆104Updated 6 years ago
• k-vitali / Malware-Misc-RE
  Miscellaneous Malware RE
  ☆195Updated 2 years ago
• ashemery / CuckooVM
  Cuckoo running in a nested hypervisor
  ☆128Updated 4 years ago
• InQuest / ThreatKB
  Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
  ☆98Updated last month
• denisugarte / PowerDrive
  A tool for de-obfuscating PowerShell scripts
  ☆67Updated 5 years ago
• EmergingThreats / threatresearch
  Proofpoint - Emerging Threats - Threat Research tools + publicly shared intel and documentation
  ☆72Updated 2 months ago
• certtools / malware_name_mapping
  A mapping of used malware names to commonly known family names
  ☆62Updated last year
• telsy-cyberops / research
  Telsy CTI Research Team
  ☆57Updated 4 years ago
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆95Updated last year
• InQuest / sandboxapi
  Minimal, consistent Python API for building integrations with malware sandboxes.
  ☆138Updated last year
• JR0driguezB / malware_configs
  Various config files obtained during malware analysis
  ☆67Updated 6 years ago
• intezer / MoP
  MoP - "Master of Puppets" - Advanced malware tracking framework
  ☆82Updated 5 months ago
• joesecurity / pafishmacro
  Pafish Macro is a Macro enabled Office Document to detect malware analysis systems and sandboxes. It uses evasion & detection techniques …
  ☆281Updated 7 years ago
• marcosd4h / sysmonx
  SysmonX - An Augmented Drop-In Replacement of Sysmon
  ☆212Updated 5 years ago
• Neo23x0 / exotron
  Sandbox feature upgrade with the help of wrapped samples
  ☆76Updated 6 years ago
• fox-it / cobaltstrike-extraneous-space
  Historical list of {Cobalt Strike,NanoHTTPD} servers
  ☆122Updated 5 years ago
• Neo23x0 / DLLRunner
  Smart DLL execution for malware analysis in sandbox systems
  ☆142Updated 10 years ago