Alternatives and similar repositories for Rewind

Users that are interested in Rewind are comparing it to the libraries listed below

• nccgroup / Wubes
  Qubes containerization on Windows
  ☆130Updated 4 years ago
• nccgroup / KilledProcessCanary
  A canary designed to minimize the impact from certain Ransomware actors
  ☆98Updated 4 years ago
• imp0rtp3 / Yobi
  Yara Based Detection Engine for web browsers
  ☆49Updated 3 years ago
• Neo23x0 / xorex
  XOR Key Extractor
  ☆50Updated 11 months ago
• ITAYC0HEN / SUNBURST-Cracked
  The following repository contains a modified version of SUNBURST with cracekd hashes, comments and annotations.
  ☆56Updated 4 years ago
• ppt0 / easyhunting
  Get intelligence info (tags, mitre techniques, yara and more) and find similar malware in a fast and easy way
  ☆18Updated 3 years ago
• slaughterjames / excelpeek
  ☆38Updated 3 years ago
• SwitHak / SwitHak.github.io
  SwitHak' Security Place for my Opinions and Work
  ☆34Updated last year
• jeffjbowie / intelligence_gathering
  A collection of scripts for the purpose of gathering open source intelligence, to be presented at GrayHat, BSides Denver, and Information…
  ☆25Updated 4 years ago
• ninoseki / ioc-extractor
  An npm package for extracting common IoC (Indicator of Compromise) from a block of text
  ☆58Updated 5 months ago
• DissectMalware / OfficeForensicTools
  A set of tools for collecting forensic information
  ☆26Updated 5 years ago
• shabarkin / pointer
  Pointer was developed for massive hunting and mapping Cobalt Strike servers exposed on the internet.
  ☆66Updated 3 years ago
• advanced-threat-research / DarkSide-Config-Extract
  ☆35Updated 3 years ago
• sbousseaden / YaraHunts
  Random hunting ordiented yara rules
  ☆97Updated 2 years ago
• usualsuspect / yara_vt_mock
  Emulates the VirusTotal "vt" YARA module for livehunt rule debugging/testing
  ☆21Updated 2 years ago
• SentineLabs / PowerTrick
  This is a repository for the public blog with Labs indicators of compromise and code
  ☆18Updated 5 years ago
• W3ndige / aurora
  Malware similarity platform with modularity in mind.
  ☆78Updated 4 years ago
• DissectMalware / MDIExtractor
  ☆15Updated 3 years ago
• mgeeky / procmon-filters
  SysInternals' Process Monitor filters repository - collected from various places and made up by myself. To be used for quick Behavioral a…
  ☆67Updated 3 years ago
• lp-db / lp-db
  Login Pages Database forms a knowledge base on login pages related to malicious activities (C2 panels, phishing kits...).
  ☆39Updated 2 years ago
• rgeoghan / app-password-persistence
  Using Microsoft 365 App Passwords for persistence
  ☆23Updated 4 years ago
• myrtus0x0 / SMAT
  Standardized Malware Analysis Tool
  ☆53Updated 4 years ago
• mandiant / pulsesecure_exploitation_countermeasures
  ☆23Updated 2 years ago
• limbenjamin / nTimetools
  Timestomper and Timestamp checker with nanosecond accuracy for NTFS volumes
  ☆50Updated 3 years ago
• memprocfshunt / MemProcFSHunter
  A powershell parser for https://github.com/ufrisk/MemProcFS
  ☆44Updated 4 years ago
• c3rb3ru5d3d53c / mwdb-feeds
  A Modular MWDB Utility to Collect Fresh Malware Samples
  ☆34Updated 4 years ago
• Beercow / SEPparser
  Script for parsing Symantec Endpoint Protection logs, VBNs, and ccSubSDK database.
  ☆65Updated 2 years ago
• MITRECND / malchive
  Various capabilities for static malware analysis.
  ☆78Updated 10 months ago
• hpthreatresearch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆146Updated last year
• evild3ad / isodump
  isodump - ISO dump utility
  ☆40Updated 6 years ago