Alternatives and similar repositories for distro

Users that are interested in distro are comparing it to the libraries listed below

• REMnux / salt-states
  This repository maintains the SaltStack state files for the REMnux distro.
  ☆50Updated this week
• REMnux / remnux-cli
  This repository contains the source code for the REMnux installer, which is the command-line tool for installing and upgrading the REMnux…
  ☆47Updated 9 months ago
• airbus-cert / regrippy
  A modern Python-3-based alternative to RegRipper
  ☆196Updated 4 months ago
• Velocidex / c-aff4
  An AFF4 C++ implementation.
  ☆206Updated 2 years ago
• Xumeiquer / yara-forensics
  Set of Yara rules for finding files using magics headers
  ☆138Updated 4 years ago
• decalage2 / balbuzard
  Balbuzard is a package of malware analysis tools in python to extract patterns of interest from suspicious files (IP addresses, domain na…
  ☆138Updated 5 years ago
• malpedia / malpediaclient
  ☆25Updated 2 weeks ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆109Updated 7 years ago
• williballenthin / EVTXtract
  EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.
  ☆195Updated 4 months ago
• EricZimmerman / bstrings
  A better strings utility!
  ☆136Updated last month
• NextronSystems / valhallaAPI
  Valhalla API Client
  ☆70Updated 2 years ago
• att / docker-forensics
  Tools to assist in forensicating docker
  ☆84Updated 5 months ago
• ralphje / imagemounter
  Command line utility and Python package to ease the (un)mounting of forensic disk images
  ☆124Updated 2 years ago
• CERT-Polska / n6
  Automated handling of data feeds for security teams
  ☆139Updated last month
• CybercentreCanada / assemblyline-base
  Base components for Assemblyline 4 (Datastore, ODM, Filestore, Remote Datatypes, utils function, etc...)
  ☆69Updated last week
• MarkBaggett / werejugo
  Identifies physical locations where a laptop has been based upon wireless profiles and wireless data recorded in event logs
  ☆93Updated 4 years ago
• cudeso / OPML-Security-Feeds
  A list of OPML Security Feeds
  ☆75Updated 4 months ago
• EricZimmerman / ericzimmerman.github.io
  Software downloads
  ☆103Updated 3 months ago
• REMnux / docker
  This repository contains Dockerfiles for building Docker images of popular malware analysis tools, which are distributed through the REMn…
  ☆279Updated 2 weeks ago
• fox-it / acquire
  acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.
  ☆108Updated last week
• target / halogen
  Automatically create YARA rules from malicious documents.
  ☆211Updated 3 years ago
• arxsys / dff
  DFF (Digital Forensics Framework) is a Forensics Framework coming with command line and graphical interfaces. DFF can be used to investig…
  ☆286Updated 5 years ago
• MISP / misp-book
  User guide of MISP
  ☆272Updated 7 months ago
• msuhanov / Linux-write-blocker
  The kernel patch and userspace tools to enable Linux software write blocking
  ☆143Updated 5 years ago
• EricZimmerman / RECmd
  Command line access to the Registry
  ☆153Updated 3 weeks ago
• MAECProject / schemas
  MAEC Schemas and Schema Development
  ☆88Updated 5 years ago
• fireeye / BitsParser
  ☆149Updated last year
• bestpractical / rtir
  ☆139Updated this week
• PoorBillionaire / Windows-Prefetch-Parser
  Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files
  ☆119Updated last year
• docker-forensics-toolkit / toolkit
  A toolkit for the post-mortem examination of Docker containers from forensic HDD copies
  ☆104Updated last year