An open source framework for enterprise level automated analysis.
☆394Jun 27, 2022Updated 3 years ago
Alternatives and similar repositories for stoq
Users that are interested in stoq are comparing it to the libraries listed below
Sorting:
- stoQ Public Plugins☆71Feb 27, 2023Updated 3 years ago
- DPS' Lightweight Investigation Notebook☆433Dec 31, 2023Updated 2 years ago
- FAME Automates Malware Evaluation☆929Dec 16, 2025Updated 2 months ago
- Modular file scanning/analysis framework☆622Oct 8, 2019Updated 6 years ago
- Django web interface for managing Yara rules☆196Jul 28, 2018Updated 7 years ago
- The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted driv…☆343Jun 25, 2022Updated 3 years ago
- Collect, Process, and Hunt with host based data from MacOS, Windows, and Linux☆505Oct 21, 2022Updated 3 years ago
- Tool to extract indicators of compromise from security reports in PDF format☆439Feb 24, 2023Updated 3 years ago
- Laika BOSS: Object Scanning System☆752Dec 16, 2024Updated last year
- 16,432 Free Yara rules created by☆391Jun 1, 2019Updated 6 years ago
- Shows command lines used by latest instances analyzed on Hybrid-Analysis☆43Sep 18, 2018Updated 7 years ago
- Web App for Volatility framework☆390Jan 13, 2026Updated last month
- Malware Configuration And Payload Extraction☆761Nov 22, 2024Updated last year
- File Scanning Framework☆294Sep 15, 2021Updated 4 years ago
- Fast Incident Response☆1,994Feb 17, 2026Updated 2 weeks ago
- Threat Feed Aggregation, Made Easy☆169Jul 13, 2020Updated 5 years ago
- An informational repo about hunting for adversaries in your IT environment.☆1,854Nov 17, 2021Updated 4 years ago
- CIF v3 -- the fastest way to consume threat intelligence☆183Apr 20, 2023Updated 2 years ago
- Your Everyday Threat Intelligence☆1,954Feb 12, 2026Updated 3 weeks ago
- IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.☆1,113Feb 14, 2026Updated 2 weeks ago
- Builds malware analysis Windows VMs so that you don't have to.☆1,045Aug 23, 2021Updated 4 years ago
- Python script to decode common encoded PowerShell scripts☆217Jun 13, 2018Updated 7 years ago
- threat language parser☆59Apr 20, 2015Updated 10 years ago
- Indicator Extractor☆141Jul 14, 2018Updated 7 years ago
- IOC Management and Visualization Tool☆48Dec 8, 2022Updated 3 years ago
- ph0neutria is a malware zoo builder that sources samples straight from the wild. Everything is stored in Viper for ease of access and man…☆302Apr 24, 2020Updated 5 years ago
- CRITs - Collaborative Research Into Threats☆910Jul 29, 2019Updated 6 years ago
- Defanged Indicator of Compromise (IOC) Extractor.☆569Aug 28, 2024Updated last year
- YARA malware query accelerator (web frontend)☆437Feb 3, 2026Updated last month
- Lazy Office Analyzer☆121Feb 15, 2017Updated 9 years ago
- AIL framework - Analysis Information Leak framework. Project moved to https://github.com/ail-project☆1,361Updated this week
- A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.☆387May 11, 2022Updated 3 years ago
- The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).☆556May 9, 2023Updated 2 years ago
- Collaborative malware analysis framework☆381Jan 22, 2019Updated 7 years ago
- Incident Response Forensic Framework☆612Nov 20, 2019Updated 6 years ago
- A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.☆252Jul 19, 2021Updated 4 years ago
- Just another tool to extract Indicator of compromise (ioc) from files☆29Oct 1, 2015Updated 10 years ago
- Incident Response Methodologies☆1,018Aug 2, 2018Updated 7 years ago
- Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.☆1,338Dec 13, 2022Updated 3 years ago