Alternatives and similar repositories for BroIDS_Unicorn

Users that are interested in BroIDS_Unicorn are comparing it to the libraries listed below

• CrySyS / membrane
  Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis
  ☆41Updated 8 years ago
• techbliss / Yara_Mailware_Quick_menu_scanner
  Work Fast With the pattern matching swiss knife for malware researchers.
  ☆38Updated 9 years ago
• ShellcodeSmuggler / IAT_POC
  POC for IAT Parsing Payloads
  ☆48Updated 8 years ago
• ahhh / YARA
  a collection of yara rules for binary analysis
  ☆24Updated 8 years ago
• jjo-sec / idataco
  IDATACO IDA Pro Plugin
  ☆47Updated 9 years ago
• Th4nat0s / No_Sandboxes
  Test suite for bypassing Malware sandboxes.
  ☆39Updated 10 years ago
• cylance / IDPanel
  Identify botnet panels with Ensembled Decision Trees
  ☆18Updated 9 years ago
• eurecom-s3 / actaeon
  Memory forensics of virtualization environments
  ☆47Updated 10 years ago
• zynamics / bincrowd-plugin-ida
  BinCrowd Plugin for IDA Pro
  ☆43Updated 13 years ago
• joxeankoret / maltindex
  Mal Tindex is an Open Source tool for indexing binaries and help attributing malware campaigns
  ☆67Updated 8 years ago
• necst / crave
  Framework to automatically test and explore the capabilities of generic AV engines
  ☆69Updated 6 years ago
• mbrengel / memscrimper
  Code for the DIMVA 2018 paper: "MemScrimper: Time- and Space-Efficient Storage of Malware Sandbox Memory Dumps"
  ☆27Updated 6 years ago
• motazreda / MalwareFragmentationTool
  Malware Fragmentation Tool its a tool that simply fragment the PE file and it can disassemble the PE file, etc this tool very useful for…
  ☆37Updated 9 years ago
• dungtv543 / Dutas
  Analysis PE file or Shellcode
  ☆50Updated 9 years ago
• mandiant / rvmi-qemu
  QEMU with rVMI extensions
  ☆25Updated 8 years ago
• mandiant / remote_lookup
  Resolves DLL API entrypoints for a process w/ remote query capabilities.
  ☆55Updated 8 years ago
• hatching / tracy
  tracy - a system call tracer and injector. Find us in #tracy on irc.freenode.net
  ☆33Updated last year
• adrianherrera / reil-parser
  Haskell parser for the REIL intermediate language (currently a work-in-progress)
  ☆11Updated 7 years ago
• helpsystems / sentinel
  Sentinel is a command line tool able to protect Windows 32 bit programs against exploits targeted by attackers or viruses. It can protect…
  ☆71Updated 11 years ago
• binarlyhq / binarly-query
  Command-line Interface for Binar.ly
  ☆38Updated 8 years ago
• Yara-Rules / r2yara
  r2yara - Module for Yara using radare2 information
  ☆36Updated last year
• matonis / ripPE
  ripPE - section extractor and profiler for PE file analysis
  ☆32Updated 11 years ago
• ilovepp / firminsight
  Automatic collect firmwares from internet,decompress,find binary code,extract info,file relation and function relation
  ☆40Updated 8 years ago
• 0day1day / bap
  Binary Analysis Platform
  ☆74Updated 11 years ago
• deresz / unpacking
  Some tutorials and examples for generic unpacking JAVA, .NET and x86/x64 code
  ☆51Updated 9 years ago
• Cisco-Talos / locky
  ☆68Updated 8 years ago
• olliencc / WinBinaryAudit
  GSAudit at Symantec, ExeAudit at RIM, RECX Binary Assurance for Windows at Recx etc. - core library now WinBinaryAudit
  ☆24Updated 10 years ago
• Kafeine / public
  ☆19Updated 6 years ago
• scudette / memory-analysis
  A Rekall interactive document for a Memory Analysis workshop/course.
  ☆43Updated 8 years ago
• hacksysteam / ExploitReliabilityTestingSystem
  Exploit Reliability Testing System
  ☆35Updated 10 years ago