Alternatives and similar repositories for malware-persistence

Users that are interested in malware-persistence are comparing it to the libraries listed below

• silence-is-best / c2db
  c2 traffic
  ☆189Updated 2 years ago
• CERT-Polska / malduck
  Malduck is your ducky companion in malware analysis journeys
  ☆337Updated this week
• Neo23x0 / YARA-Performance-Guidelines
  A guide on how to write fast and memory friendly YARA rules
  ☆144Updated 4 months ago
• SentineLabs / SentinelLabs_RevCore_Tools
  The Windows Malware Analysis Reversing Core Tools
  ☆95Updated 4 years ago
• jonny-jhnson / TelemetrySource
  ☆250Updated last year
• fr0gger / unprotect
  Unprotect is a python tool for parsing PE malware and extract evasion techniques.
  ☆116Updated 2 years ago
• StrangerealIntel / Orion
  A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...
  ☆139Updated last year
• JPCERTCC / jpcert-yara
  JPCERT/CC public YARA rules repository
  ☆109Updated 6 months ago
• pan-unit42 / tweets
  ☆130Updated last year
• CrowdStrike / SuperMem
  A python script developed to process Windows memory images based on triage type.
  ☆262Updated last year
• strozfriedberg / cobaltstrike-config-extractor
  Cobalt Strike Beacon configuration extractor and parser.
  ☆153Updated 3 years ago
• xorhex / mlget
  A golang CLI tool to download malware from a variety of sources.
  ☆146Updated last week
• ashemery / malware4edu
  Malware Samples that could be used for teaching students about malware analysis.
  ☆56Updated last year
• d4rk-d4nph3 / Ransomware-Reports
  This repo is a collection of Ransomware reports from vendors, researchers, etc.
  ☆118Updated 2 years ago
• forensicxlab / VISION-ProcMon
  A ProcessMonitor visualization application written in rust.
  ☆181Updated last year
• CybercentreCanada / CCCS-Yara
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆104Updated last month
• monnappa22 / HollowFind
  Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …
  ☆137Updated 2 years ago
• 3CORESec / MAL-CL
  MAL-CL (Malicious Command-Line)
  ☆313Updated 2 years ago
• netskopeoss / NetskopeThreatLabsIOCs
  ☆131Updated 3 weeks ago
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆102Updated 2 months ago
• c3rb3ru5d3d53c / mwcfg
  A Feature Rich Modular Malware Configuration Extraction Utility for MalDuck
  ☆128Updated last year
• AndrewRathbun / VanillaWindowsReference
  A repo that contains recursive directory listings (using PowerShell) of a vanilla (clean) install of every Windows OS version to compare …
  ☆163Updated 7 months ago
• fxb-cocacoding / yara-signator
  Automatic YARA rule generation for Malpedia
  ☆161Updated 2 years ago
• Unprotect-Project / Unprotect_Submission
  Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in thi…
  ☆165Updated 2 months ago
• splunk / melting-cobalt
  A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object
  ☆167Updated 2 years ago
• CERT-Polska / mwdb-core
  Malware repository component for samples & static configuration with REST API interface.
  ☆359Updated this week
• pathtofile / Sealighter
  Sysmon-Like research tool for ETW
  ☆354Updated 2 years ago
• mttaggart / blue-jupyter
  Jupyter Notebooks for the Blue Team
  ☆144Updated 3 months ago
• pan-unit42 / dotnetfile
  ☆106Updated last year
• davidpany / WMI_Forensics
  ☆304Updated 4 years ago