Alternatives and similar repositories for distro

Users that are interested in distro are comparing it to the libraries listed below

• REMnux / salt-states
  This repository maintains the SaltStack state files for the REMnux distro.
  ☆54Updated last week
• REMnux / remnux-cli
  This repository contains the source code for the REMnux installer, which is the command-line tool for installing and upgrading the REMnux…
  ☆48Updated 3 weeks ago
• Xumeiquer / yara-forensics
  Set of Yara rules for finding files using magics headers
  ☆141Updated 5 years ago
• decalage2 / balbuzard
  Balbuzard is a package of malware analysis tools in python to extract patterns of interest from suspicious files (IP addresses, domain na…
  ☆141Updated 5 years ago
• airbus-cert / regrippy
  A modern Python-3-based alternative to RegRipper
  ☆205Updated 9 months ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆109Updated 7 years ago
• CybercentreCanada / assemblyline-base
  Base components for Assemblyline 4 (Datastore, ODM, Filestore, Remote Datatypes, utils function, etc...)
  ☆70Updated 2 weeks ago
• NextronSystems / valhallaAPI
  Valhalla API Client
  ☆70Updated 2 years ago
• kirk-sayre-work / ViperMonkey
  A VBA parser and emulation engine to analyze malicious macros.
  ☆97Updated last week
• williballenthin / EVTXtract
  EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.
  ☆204Updated 9 months ago
• MISP / misp-book
  User guide of MISP
  ☆282Updated last year
• REMnux / docker
  This repository contains Dockerfiles for building Docker images of popular malware analysis tools, which are distributed through the REMn…
  ☆292Updated last month
• Velocidex / c-aff4
  An AFF4 C++ implementation.
  ☆210Updated 2 years ago
• malpedia / malpediaclient
  ☆27Updated 5 months ago
• EricZimmerman / bstrings
  A better strings utility!
  ☆144Updated 4 months ago
• hatching / triage
  Hatching Triage public command-line utility and API library.
  ☆74Updated 2 years ago
• fox-it / acquire
  acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.
  ☆113Updated 2 weeks ago
• teamdfir / sift-saltstack
  Salt States for Configuring the SIFT Workstation
  ☆106Updated 3 weeks ago
• CERT-Polska / n6
  Automated handling of data feeds for security teams
  ☆146Updated this week
• EFForg / yaya
  Yet Another Yara Automaton - Automatically curate open source yara rules and run scans
  ☆301Updated 2 years ago
• target / halogen
  Automatically create YARA rules from malicious documents.
  ☆212Updated 3 years ago
• MAECProject / schemas
  MAEC Schemas and Schema Development
  ☆89Updated 5 years ago
• docker-forensics-toolkit / toolkit
  A toolkit for the post-mortem examination of Docker containers from forensic HDD copies
  ☆106Updated last year
• att / docker-forensics
  Tools to assist in forensicating docker
  ☆85Updated 10 months ago
• intezer / yara-rules
  ☆128Updated 11 months ago
• andreafortuna / autotimeliner
  Automagically extract forensic timeline from volatile memory dump
  ☆131Updated last year
• nbeede / BoomBox
  Automatic deployment of Cuckoo Sandbox malware lab using Packer and Vagrant
  ☆240Updated 2 years ago
• ralphje / imagemounter
  Command line utility and Python package to ease the (un)mounting of forensic disk images
  ☆124Updated 2 years ago
• CheckPointSW / Cuckoo-AWS
  Extension to Cuckoo Sandbox open source projects, adds support to AWS cloud functionalities and enables running emulation on auto-scaling…
  ☆135Updated 3 years ago
• viper-framework / viper2
  File analysis and management framework.
  ☆92Updated 2 years ago