Alternatives and similar repositories for WAFS

Users that are interested in WAFS are comparing it to the libraries listed below

• LambdaMamba / LenaMalwareAnalysis
  Lena's scripts/code/resources for malware analysis
  ☆26Updated last year
• referefref / Rusty-Telephone
  Exfiltrate data over audio output from remote desktop sessions - Covert channel PoC
  ☆63Updated last year
• dobin / DetonatorAgent
  Detonate malware on VMs and get logs & detection status
  ☆69Updated this week
• PaloAltoNetworks / Unit42-Threat-Intelligence-Article-Information
  This is the repository for indicators of compromise (IOCs) and other data for threat intelligence articles posted on the Palo Alto Networ…
  ☆108Updated 2 weeks ago
• BlackSnufkin / CheckPlz
  Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.
  ☆33Updated 11 months ago
• amohanta / Detection_Engineering_Tools
  Detection Engineering Tools
  ☆17Updated this week
• closed-systems / strangerstrings
  A little tool to filter the stranger strings from a binary so you can analyze the good ones
  ☆52Updated 2 months ago
• ANSSI-FR / orc2timeline
  orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them
  ☆34Updated 5 months ago
• D4RK-R4BB1T / BlackBasta-Chats
  ☆49Updated 9 months ago
• jstrosch / FLARE-VM-configs
  These FLARE-VM configuration files are designed to be help setup a purpose-built installation, remove unnecessary packages to help stream…
  ☆15Updated last year
• moval0x1 / NoDelete
  NoDelete is a tool that assists in malware analysis by locking a folder where malware drops files before deleting them.
  ☆49Updated 3 weeks ago
• m1ddl3w4r3 / WSL_Payload_Builder
  A powerful shell script for creating custom WSL (Windows Subsystem for Linux) distributions with embedded payloads.
  ☆72Updated 3 weeks ago
• CyberRa1 / APT-Hub
  APT hub, It help's research to collect information and data on the latest APT activities. It collects data on APT profiles, IOCs(1 yr), a…
  ☆53Updated 8 months ago
• MatheuZSecurity / NullSection
  NullSection is an Anti-Reversing tool that applies a technique that overwrites the section header with nullbytes.
  ☆68Updated last year
• chipmanfu / Cyber-Range
  create a "simulated internet" cyber range environment
  ☆19Updated 6 months ago
• CyberSecurityUP / AV-EDR-Evasion-Practical-Techniques-Course
  ☆48Updated 5 months ago
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆54Updated last year
• dwmetz / MalChela
  A YARA & Malware Analysis Toolkit written in Rust.
  ☆74Updated 2 months ago
• MazX0p / CobaltSentry
  ☆24Updated 9 months ago
• vysecurity / PacketParser
  A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.
  ☆22Updated last year
• StrangerealIntel / Shadow-Pulse
  information about ransomware groups (Ransomware Analysis Notes)
  ☆40Updated last year
• eric-conrad / c2-talk
  ☆37Updated last year
• OSTEsayed / OSTE-MalStatWare
  MalStatWare automates malware analysis with Python. Extract key details like file size, type, hash, path, and digital signature. It analy…
  ☆30Updated last year
• FarghlyMal / Config-Extractors
  ☆27Updated last year
• 0xNslabs / CanaryTokenScanner
  Detects CanaryTokens in Office docs and PDFs (docx, xlsx, pptx, pdf) without triggering alerts.
  ☆125Updated last year
• MatheuZSecurity / Imperius
  Make an Linux Kernel rootkit visible again.
  ☆61Updated 9 months ago
• strozfriedberg / QELP
  Quick ESXi Log Parser
  ☆28Updated last month
• MatheuZSecurity / detect-lkm-rootkit-cheatsheet
  Cheat sheet to detect and remove linux kernel rootkit
  ☆75Updated 11 months ago
• tstromberg / sunlight
  Linux #rootkit and #malware revealer
  ☆28Updated last year
• PenetrumLLC / Malcore-Playbook
  Modular framework for automating triaging, malware analysis, and analyst workflows
  ☆43Updated 7 months ago