Alternatives and similar repositories for schemas:

Users that are interested in schemas are comparing it to the libraries listed below

• MITRECND / malchive
  Various capabilities for static malware analysis.
  ☆77Updated 7 months ago
• Neo23x0 / ImpHash-Generator
  PE Import Hash Generator
  ☆77Updated 7 years ago
• CERT-Polska / training-mwdb
  MWDB exercises
  ☆19Updated 2 months ago
• W3ndige / aurora
  Malware similarity platform with modularity in mind.
  ☆78Updated 3 years ago
• monnappa22 / HollowFind
  Hollowfind is a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect …
  ☆134Updated 2 years ago
• silence-is-best / c2db
  c2 traffic
  ☆188Updated 2 years ago
• andreafortuna / malhunt
  Hunt malware with Volatility
  ☆47Updated 11 months ago
• fxb-cocacoding / yara-signator
  Automatic YARA rule generation for Malpedia
  ☆159Updated 2 years ago
• MAECProject / malware-behaviors
  A taxonomy and dictionary of malware behaviors.
  ☆42Updated 5 years ago
• Neo23x0 / yaraQA
  YARA rule analyzer to improve rule quality and performance
  ☆98Updated 3 months ago
• 3c7 / yaramanager
  Simple yara rule manager
  ☆66Updated 2 years ago
• appgate / labs
  This repository contains files from AppGate / Immunity Malware Analysis Team.
  ☆21Updated 3 years ago
• ConnorShride / box-ps
  Powershell sandboxing utility
  ☆18Updated this week
• Insikt-Group / Research
  Research indicators and detection rules
  ☆66Updated last year
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆95Updated 2 years ago
• fr0gger / unprotect
  Unprotect is a python tool for parsing PE malware and extract evasion techniques.
  ☆114Updated last year
• Xumeiquer / yara-forensics
  Set of Yara rules for finding files using magics headers
  ☆137Updated 4 years ago
• NextronSystems / valhallaAPI
  Valhalla API Client
  ☆68Updated 2 years ago
• hpthreatresearch / tools
  Scripts and tools accompanying HP Threat Research blog posts and reports.
  ☆50Updated 11 months ago
• ANSSI-FR / bits_parser
  Extract BITS jobs from QMGR queue and store them as CSV records
  ☆75Updated last month
• PonyPC / myaut_contrib
  mod to myaut2exe decompiler
  ☆13Updated 7 years ago
• CybercentreCanada / CCCS-Yara
  YARA rule metadata specification and validation utility / Spécification et validation pour les règles YARA
  ☆102Updated last week
• d00rt / emotet_network_protocol
  ☆81Updated 5 years ago
• csababarta / volatility_plugins
  Volatility plugins created by the author
  ☆44Updated 9 years ago
• 3c7 / bazaar
  Python based CLI for MalwareBazaar
  ☆37Updated 5 months ago
• JPCERTCC / jpcert-yara
  JPCERT/CC public YARA rules repository
  ☆106Updated 4 months ago
• certsocietegenerale / fame_modules
  Community modules for FAME
  ☆65Updated 2 months ago
• advanced-threat-research / IOCs
  Repository containing IOCs, CSV and MISP JSON from our blogs
  ☆80Updated 3 years ago
• monnappa22 / Psinfo
  Psinfo is a Volatility plugin which collects the process related information from the VAD (Virtual Address Descriptor) and PEB (Process E…
  ☆36Updated 8 years ago
• godaddy / yara-rules
  YARA rules for use with ProcFilter
  ☆86Updated 7 years ago