Alternatives and similar repositories for Icewater

Users that are interested in Icewater are comparing it to the libraries listed below

• Xen0ph0n / YaraGenerator
  Automatic Yara Rule Generation
  ☆332Updated 9 years ago
• JamesHabben / evolve
  Web interface for the Volatility Memory Forensics Framework
  ☆260Updated 7 years ago
• 0x4D31 / deception-as-detection
  Deception based detection techniques mapped to the MITRE’s ATT&CK framework
  ☆289Updated 7 years ago
• mkorman90 / VolatilityBot
  VolatilityBot – An automated memory analyzer for malware samples and memory dumps
  ☆264Updated 3 years ago
• rastrea2r / rastrea2r
  Collecting & Hunting for IOCs with gusto and style
  ☆238Updated 3 years ago
• 504ensicsLabs / DAMM
  Differential Analysis of Malware in Memory
  ☆211Updated 8 years ago
• mandiant / iocs
  FireEye Publicly Shared Indicators of Compromise (IOCs)
  ☆465Updated 6 years ago
• PUNCH-Cyber / stoq
  An open source framework for enterprise level automated analysis.
  ☆395Updated 2 years ago
• kevthehermit / VolUtility
  Web App for Volatility framework
  ☆380Updated 6 months ago
• ctxis / CAPE
  Malware Configuration And Payload Extraction
  ☆757Updated 6 months ago
• mitre / multiscanner
  Modular file scanning/analysis framework
  ☆618Updated 5 years ago
• mandiant / ioc_writer
  ☆203Updated 2 years ago
• JohnLaTwC / PyPowerShellXray
  Python script to decode common encoded PowerShell scripts
  ☆215Updated 6 years ago
• egaus / MaliciousMacroBot
  ☆151Updated 6 years ago
• certsocietegenerale / fame
  FAME Automates Malware Evaluation
  ☆898Updated last month
• DefensePointSecurity / threat_note
  DPS' Lightweight Investigation Notebook
  ☆430Updated last year
• OMENScan / AChoir
  Windows Live Artifacts Acquisition Script
  ☆188Updated 2 years ago
• WithSecureLabs / snake
  snake - a malware storage zoo
  ☆216Updated last year
• diogo-fernan / malsub
  A Python RESTful API framework for online malware analysis and threat intelligence services.
  ☆368Updated last year
• Cyb3rWard0g / Invoke-ATTACKAPI
  A PowerShell script to interact with the MITRE ATT&CK Framework via its own API
  ☆369Updated 6 years ago
• keithjjones / fileintel
  A modular Python application to pull intelligence about malicious files
  ☆122Updated 4 years ago
• sapphirex00 / Threat-Hunting
  Personal compilation of APT malware from whitepaper releases, documents and own research
  ☆260Updated 6 years ago
• TheHive-Project / Hippocampe
  Threat Feed Aggregation, Made Easy
  ☆168Updated 4 years ago
• EmersonElectricCo / fsf
  File Scanning Framework
  ☆292Updated 3 years ago
• ThreatHuntingProject / hunter
  A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.
  ☆246Updated 3 years ago
• PUNCH-Cyber / YaraGuardian
  Django web interface for managing Yara rules
  ☆192Updated 6 years ago
• cylance / CyBot
  Open Source Threat Intelligence Chat Bot
  ☆321Updated 5 years ago
• orlikoski / Skadi
  Collect, Process, and Hunt with host based data from MacOS, Windows, and Linux
  ☆501Updated 2 years ago
• dod-cyber-crime-center / DC3-MWCP
  DC3 Malware Configuration Parser (DC3-MWCP) is a framework for parsing configuration information from malware. The information extracted …
  ☆320Updated 3 months ago
• n0dec / MalwLess
  Test Blue Team detections without running any attack.
  ☆272Updated last year