Alternatives and similar repositories for distro

Users that are interested in distro are comparing it to the libraries listed below

• REMnux / salt-states
  This repository maintains the SaltStack state files for the REMnux distro.
  ☆53Updated last week
• REMnux / remnux-cli
  This repository contains the source code for the REMnux installer, which is the command-line tool for installing and upgrading the REMnux…
  ☆48Updated last week
• Xumeiquer / yara-forensics
  Set of Yara rules for finding files using magics headers
  ☆140Updated 5 years ago
• decalage2 / balbuzard
  Balbuzard is a package of malware analysis tools in python to extract patterns of interest from suspicious files (IP addresses, domain na…
  ☆140Updated 5 years ago
• Velocidex / c-aff4
  An AFF4 C++ implementation.
  ☆210Updated 2 years ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆109Updated 7 years ago
• NextronSystems / valhallaAPI
  Valhalla API Client
  ☆70Updated 2 years ago
• airbus-cert / regrippy
  A modern Python-3-based alternative to RegRipper
  ☆201Updated 8 months ago
• williballenthin / EVTXtract
  EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.
  ☆202Updated 9 months ago
• malpedia / malpediaclient
  ☆27Updated 4 months ago
• CybercentreCanada / assemblyline-base
  Base components for Assemblyline 4 (Datastore, ODM, Filestore, Remote Datatypes, utils function, etc...)
  ☆71Updated this week
• REMnux / docker
  This repository contains Dockerfiles for building Docker images of popular malware analysis tools, which are distributed through the REMn…
  ☆291Updated 2 weeks ago
• msuhanov / Linux-write-blocker
  The kernel patch and userspace tools to enable Linux software write blocking
  ☆151Updated 5 years ago
• MISP / misp-book
  User guide of MISP
  ☆281Updated 11 months ago
• fox-it / acquire
  acquire is a tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container.
  ☆112Updated 2 weeks ago
• kirk-sayre-work / ViperMonkey
  A VBA parser and emulation engine to analyze malicious macros.
  ☆96Updated last month
• att / docker-forensics
  Tools to assist in forensicating docker
  ☆85Updated 9 months ago
• andreafortuna / autotimeliner
  Automagically extract forensic timeline from volatile memory dump
  ☆132Updated last year
• CERT-Polska / n6
  Automated handling of data feeds for security teams
  ☆145Updated 2 months ago
• MAECProject / schemas
  MAEC Schemas and Schema Development
  ☆89Updated 5 years ago
• EricZimmerman / bstrings
  A better strings utility!
  ☆141Updated 3 months ago
• docker-forensics-toolkit / toolkit
  A toolkit for the post-mortem examination of Docker containers from forensic HDD copies
  ☆106Updated last year
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆135Updated last year
• blacklotuslabs / IOCs
  IOCs published by Black Lotus Labs
  ☆124Updated last month
• teamdfir / sift-saltstack
  Salt States for Configuring the SIFT Workstation
  ☆106Updated this week
• mayhemiclabs / weblabyrinth
  A system that creates a bogus web structure to entrap and delay web scanners
  ☆65Updated 4 years ago
• intezer / yara-rules
  ☆128Updated 10 months ago
• nbeede / BoomBox
  Automatic deployment of Cuckoo Sandbox malware lab using Packer and Vagrant
  ☆240Updated 2 years ago
• EricZimmerman / ericzimmerman.github.io
  Software downloads
  ☆109Updated 7 months ago
• botherder / pcqf
  pcqf (PC Quick Forensics) helps quickly gathering forensic evidence from Windows, Mac, and Linux systems, in order to identify potential …
  ☆135Updated 2 years ago