Alternatives and similar repositories for McAFuse

Users that are interested in McAFuse are comparing it to the libraries listed below

• 2igosha / sunburst_dga
  ☆22Updated 4 years ago
• dfirlabs / ntfs-specimens
  NTFS file system specimens
  ☆13Updated 2 years ago
• Hestat / calamity
  A script to assist in processing forensic RAM captures for malware triage
  ☆27Updated 4 years ago
• evild3ad / isodump
  isodump - ISO dump utility
  ☆41Updated 6 years ago
• c3rb3ru5d3d53c / mwdb-feeds
  A Modular MWDB Utility to Collect Fresh Malware Samples
  ☆34Updated 4 years ago
• vertrex / DFF
  DFF (Digital Forensics Framework)
  ☆11Updated 4 years ago
• cocaman / yara-scan-service
  Repository for scripts and tips for "Yara Scan Service"
  ☆20Updated 2 years ago
• kirk-sayre-work / xlmulator
  Python emulator for Excel XLM macros.
  ☆18Updated 5 years ago
• jschicht / MftCarver
  Carve $MFT records from a chunk of data (for instance a memory dump)
  ☆16Updated 9 years ago
• stvemillertime / Absolutely-Positively-NOT-Hacking-Back-with-Pcap
  Streaming Unexpected Network Byte Sequences with High Probability of Blue Screening or Otherwise Crashing Attacker Command-and-Control No…
  ☆22Updated 6 years ago
• silascutler / DetuxNG
  The Multiplatform Linux Sandbox
  ☆16Updated last year
• dhondta / AppmemDumper
  Forensics triage tool relying on Volatility and Foremost
  ☆26Updated last year
• myrtus0x0 / SMAT
  Standardized Malware Analysis Tool
  ☆53Updated 4 years ago
• lsoumille / Yara_Merger
  Merge all Yara rules from official Yara github repository in one .yar file
  ☆30Updated 7 years ago
• Silv3rHorn / autoripy
  Attempt to replicate the functions of auto_rip by Corey Harrell in Python.
  ☆13Updated last year
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 3 years ago
• ruppde / yara_rules
  Yara rules
  ☆22Updated 2 years ago
• arieljt / VTCodeBlocks-Maltego
  Maltego transforms to pivot between PE files based on their VirusTotal codeblocks
  ☆18Updated 4 years ago
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆49Updated 3 years ago
• Yara-Rules / YaraRET
  Carving tool based in Radare2 & Yara
  ☆16Updated 6 years ago
• SentineLabs / PowerTrick
  This is a repository for the public blog with Labs indicators of compromise and code
  ☆18Updated 5 years ago
• clr2of8 / DeployREMnux
  DeployREMnux is a Python script that will deploy a cloud instance of the public REMnux distribution in the Amazon cloud (AWS).
  ☆16Updated 5 years ago
• colincowie / viper-plugins
  Plugins for the Viper Framework
  ☆14Updated 5 years ago
• stairwell-inc / threat-research
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆23Updated last year
• DanusMinimus / MalwareLake
  A python script that allows a researcher to merge databases from Malshare and Malware Bazaar to created enrriched datasets from SIEM tool…
  ☆28Updated 5 years ago
• Paul-Tew / lifer
  Windows link file (shortcuts) examiner
  ☆68Updated last year
• 0xHasanM / Autopsy-Registry-Explorer
  Autopsy Module to analyze Registry Hives
  ☆15Updated 3 years ago
• alwashmi / MasterParser
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆23Updated 4 years ago
• W3ndige / aurora
  Malware similarity platform with modularity in mind.
  ☆78Updated 4 years ago
• mandiant / pulsesecure_exploitation_countermeasures
  ☆23Updated 2 years ago