Alternatives and similar repositories for COPP

Users that are interested in COPP are comparing it to the libraries listed below

• davidpany / rr_parseomater
  RegRipper wrapper for simplified bulk parsing or registry hives
  ☆9Updated 6 years ago
• Rurik / PE_Carver
  Carves EXEs from given data files, using intelligent carving based upon PE headers
  ☆38Updated 8 years ago
• rj-chap / EKWorkshop
  BSidesLV 2015 Exploit Kit Analysis Workshop Files
  ☆27Updated 9 years ago
• hiddenillusion / IR
  Some dfir stuff
  ☆31Updated 3 years ago
• JamesHabben / MalwareStuff
  ☆16Updated 10 years ago
• binglot / misc
  Various scrips
  ☆12Updated 2 years ago
• hiddenillusion / yara-goodies
  Useful scripts, rules etc. for use with YARA
  ☆27Updated 4 years ago
• msuhanov / registry-miner
  Registry Miner
  ☆14Updated 7 years ago
• cocaman / retefe
  Artefacts from various retefe campaigns
  ☆10Updated 6 years ago
• PoorBillionaire / Windows-Prefetch-Carver
  Carve Windows Prefetch files from arbitrary binary data
  ☆14Updated 7 years ago
• binarlyhq / binarly-query
  Command-line Interface for Binar.ly
  ☆37Updated 8 years ago
• dnlongen / RegLister
  Recurse through a registry, identifying values with large data -- a registry malware hunter
  ☆44Updated 8 years ago
• malware-kitten / yara_sig_tool
  A tool to generate yara signatures from function blocks
  ☆19Updated 10 years ago
• gleeda / misc-scripts
  misc scripts
  ☆36Updated 6 years ago
• 0pc0deFR / YaraRules
  Multiple rules for yara-project for detect compiler/packer/protector
  ☆33Updated 5 years ago
• TakahiroHaruyama / openioc_scan
  openioc_scan Volatility Framework plugin
  ☆43Updated 9 years ago
• ahhh / YARA
  a collection of yara rules for binary analysis
  ☆24Updated 7 years ago
• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆42Updated 4 years ago
• bsi-group / autorun-logger-server
  Server for receiving autorun data from the clients
  ☆13Updated 7 years ago
• Raikia / CredSwissArmy
  DEPRECATED! LOOK AT CREDNINJA! A tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a …
  ☆15Updated 8 years ago
• Kafeine / public
  ☆19Updated 6 years ago
• vortessence / vortessence
  Automated memory forensics analysis
  ☆33Updated 5 years ago
• davehull / Mal-Seine
  Why hunt when you can seine?
  ☆21Updated 10 years ago
• adamkramer / shape_shift
  ☆9Updated 7 years ago
• mbrown1413 / SqliteFind
  A Volatility plugin for finding sqlite database rows
  ☆22Updated 5 years ago
• techbliss / Yara_Mailware_Quick_menu_scanner
  Work Fast With the pattern matching swiss knife for malware researchers.
  ☆38Updated 9 years ago
• jjo-sec / volatility_plugins
  Volatility Plugins
  ☆21Updated 10 years ago
• PidgeyL / MISP-Extractor
  Extract information from MISP via the API
  ☆15Updated 8 years ago
• mubix / ccdc_malware
  Talk given at DerbyCon and RuxCon 2016
  ☆22Updated 8 years ago
• jschicht / Secure2Csv
  Decode security descriptors in $Secure on NTFS
  ☆20Updated 3 years ago