Alternatives and similar repositories for mbc-stix2:

Users that are interested in mbc-stix2 are comparing it to the libraries listed below

• PwCUK-CTO / rtfsig
  A tool to help malware analysts signature unique parts of RTF documents
  ☆29Updated last month
• schrodyn / steezy
  Steezy - Ghetto Yara Generation
  ☆15Updated last year
• arieljt / VTCodeBlocks-Maltego
  Maltego transforms to pivot between PE files based on their VirusTotal codeblocks
  ☆18Updated 3 years ago
• sk4la / plast
  Modular command-line threat hunting tool & framework.
  ☆17Updated 4 years ago
• c3rb3ru5d3d53c / mwdb-feeds
  A Modular MWDB Utility to Collect Fresh Malware Samples
  ☆34Updated 3 years ago
• 3c7 / infrastructure-tracking-schema
  ☆24Updated 2 years ago
• r00tten / VTI-Cosplay
  Low budget VirusTotal Intelligence Cosplay
  ☆20Updated 3 years ago
• CIRCL / yara-validator
  Validates yara rules and tries to repair the broken ones.
  ☆39Updated 4 years ago
• DissectMalware / base64_substring
  Generate a Yara rule to find base64-encoded files containg a specific keyword
  ☆40Updated 6 years ago
• mandiant / apooxml
  Generate YARA rules for OOXML documents.
  ☆38Updated last year
• BitsOfBinary / yarabuilder
  Python 3 library to build YARA rules.
  ☆13Updated 3 years ago
• itsreallynick / office-crackros
  Crack your macros like the math pros.
  ☆33Updated 8 years ago
• ruppde / yara_rules
  Yara rules
  ☆20Updated last year
• colincowie / viper-plugins
  Plugins for the Viper Framework
  ☆14Updated 5 years ago
• CERT-Polska / karton-misp-pusher
  ☆16Updated 9 months ago
• Sh3llyR / statiStrings
  YARA Rule Strings Statistics Calculator and Malware Research Helper
  ☆13Updated 3 years ago
• fr0gger / Yara-Unprotect
  This repository regroups the Yara Rules for the Unprotect Project
  ☆24Updated 4 years ago
• cocaman / analysis_scripts
  Collection of scripts used to analyse malware or emails
  ☆19Updated 4 years ago
• jeFF0Falltrades / YARA-Signatures
  A collection of my public YARA signatures for various malware families
  ☆29Updated 5 months ago
• stairwell-inc / threat-research
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆22Updated last year
• mlodic / ursnif_beacon_decryptor
  Ursnif beacon decryptor
  ☆27Updated last year
• IllusiveNetworks-Labs / HistoricProcessTree
  An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree…
  ☆60Updated 7 years ago
• mohlcyber / MISP-MVISION-EDR
  Integration between MISP platform and McAfee MVISION EDR
  ☆14Updated 2 years ago
• bromiley / pollen
  pollen - A command-line tool for interacting with TheHive
  ☆35Updated 5 years ago
• Tera0017 / TAFOF-Unpacker
  TA505 unpacker Python 2.7
  ☆47Updated 4 years ago
• 3c7 / bazaar
  Python based CLI for MalwareBazaar
  ☆36Updated 3 months ago
• cryptogramfan / Malware-Analysis-Scripts
  Handy scripts to speed up malware analysis
  ☆35Updated last year
• eCrimeLabs / phish2MISP
  Easy way to create a MISP event related to a Phishing page
  ☆17Updated last year
• jpalanco / klara-docker-compose
  Klara docker compose
  ☆11Updated 4 years ago
• zeflow / Sigma2SplunkAlert
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆13Updated 3 years ago