Alternatives and similar repositories for mbc-stix2

Users that are interested in mbc-stix2 are comparing it to the libraries listed below

• PwCUK-CTO / rtfsig
  A tool to help malware analysts signature unique parts of RTF documents
  ☆29Updated 9 months ago
• DissectMalware / base64_substring
  Generate a Yara rule to find base64-encoded files containg a specific keyword
  ☆40Updated 7 years ago
• 3c7 / yaramanager
  Simple yara rule manager
  ☆66Updated 2 years ago
• sk4la / plast
  Modular command-line threat hunting tool & framework.
  ☆17Updated 5 years ago
• jeFF0Falltrades / YARA-Signatures
  A collection of my public YARA signatures for various malware families
  ☆30Updated last year
• chaoticmachinery / mass_triage_tools
  Mass Triage Tools
  ☆20Updated 8 months ago
• Sh3llyR / statiStrings
  YARA Rule Strings Statistics Calculator and Malware Research Helper
  ☆13Updated 4 years ago
• MITRECND / malchive
  Various capabilities for static malware analysis.
  ☆79Updated last year
• CIRCL / yara-validator
  Validates yara rules and tries to repair the broken ones.
  ☆40Updated 5 years ago
• W3ndige / aurora
  Malware similarity platform with modularity in mind.
  ☆78Updated 4 years ago
• mohlcyber / MISP-MVISION-EDR
  Integration between MISP platform and McAfee MVISION EDR
  ☆14Updated 3 years ago
• schrodyn / steezy
  Steezy - Ghetto Yara Generation
  ☆15Updated 2 years ago
• ninoseki / iocingestor
  An extendable tool to extract and aggregate IoCs from threat feeds
  ☆34Updated last year
• codewatchorg / Burp-Yara-Rules
  Yara rules to be used with the Burp Yara-Scanner extension
  ☆49Updated 3 years ago
• stvemillertime / ConventionEngine
  ConventionEngine - A Yara Rulepack for PDB Path Hunting
  ☆37Updated 2 years ago
• CybercentreCanada / assemblyline-core
  Core server components for Assemblyline 4 (Alerter, dispatcher, expiry, ingester, scaler, updater, ...)
  ☆21Updated last week
• jeFF0Falltrades / IoCs
  A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo
  ☆30Updated 5 years ago
• DissectMalware / MalwareCMDMonitor
  Shows command lines used by latest instances analyzed on Hybrid-Analysis
  ☆43Updated 7 years ago
• c3rb3ru5d3d53c / mwdb-feeds
  A Modular MWDB Utility to Collect Fresh Malware Samples
  ☆34Updated 4 years ago
• OllieJC / tbat
  Threat Box Assessment Tool
  ☆19Updated 4 years ago
• nogoodconfig / pyarascanner
  A simple many-rules to many-files YARA scanner for incident response or malware zoos.
  ☆26Updated 7 years ago
• jshlbrd / threat-hunting-pocket-guide
  pocket guide for core threat hunting concepts
  ☆23Updated 5 years ago
• certtools / malware_name_mapping
  A mapping of used malware names to commonly known family names
  ☆62Updated 2 years ago
• CERT-Polska / training-materials
  ☆52Updated 7 years ago
• pmelson / narc
  ☆54Updated 5 years ago
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆97Updated 2 years ago
• certsocietegenerale / fame_modules
  Community modules for FAME
  ☆65Updated last month
• chrisdfir / sysmon2splunk
  The method and files used to generate Sysmon event logs, push them to a remote Splunk, and ingest/normalize the data for analysis.
  ☆10Updated 5 years ago
• akky2892 / Cyber-Threat-Hunting
  Information about most important hunts which can be performed by Threat hunters while searching for any adversary/threats inside the orga…
  ☆15Updated 6 years ago
• mlodic / ursnif_beacon_decryptor
  Ursnif beacon decryptor
  ☆27Updated 2 years ago