Alternatives and similar repositories for malware-pcap

Users that are interested in malware-pcap are comparing it to the libraries listed below

• 0xThiebaut / PCAPeek
  A proof-of-concept re-assembler for reverse VNC traffic.
  ☆25Updated last year
• sketchymoose / workslikeaJARM
  Method of finding interesting domains using keywords + JARMs
  ☆13Updated 2 years ago
• SIFalcon / Detection
  ☆22Updated last year
• vmware-samples / tau-research
  The project will serve as a central repository for VMware Threat Analysis Unit (TAU) to share threat intelligence with the security commu…
  ☆17Updated 2 years ago
• georgi-i / winevt_logs_analysis
  Searching .evtx logs for remote connections
  ☆23Updated last year
• JPCERTCC / CobaltStrike-Config
  Repository for archiving Cobalt Strike configuration
  ☆30Updated this week
• deepinstinct / VSTO-POC
  A proof-of-concept created for academic/learning purposes, demonstrating both local and remote use of VSTO "Add-In's" maliciously
  ☆31Updated 2 years ago
• AmirHoseinTangsiriNET / EventLogSilencer
  EventLogSilencer is a PowerShell script designed for disable Windows Event Logging
  ☆16Updated last year
• stairwell-inc / cobalt-strike-stager-parser
  ☆34Updated 2 years ago
• RedTeamOperations / Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW
  CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"
  ☆49Updated 3 years ago
• AhmedKamal1432 / Evilize
  Triaging Windows event logs based on SANS Poster
  ☆39Updated 2 years ago
• outflanknl / RedFile
  Serving files with conditions, serverside keying and more.
  ☆18Updated 2 years ago
• jymcheong / aptc
  Automated Payload Test Controller
  ☆10Updated 7 years ago
• jsecurity101 / LDAPMon
  ☆45Updated last year
• Flangvik / collector
  Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.
  ☆19Updated 2 years ago
• johneiser / MalleableC2Parser
  A library to parse, modify, and implement Malleable C2 profiles
  ☆25Updated 6 years ago
• mobdk / winNoise
  Execute embedded Mimikatz
  ☆13Updated 3 years ago
• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆44Updated last year
• advanced-threat-research / NetLlix
  A project created with an aim to emulate and test exfiltration of data over different network protocols.
  ☆31Updated 2 years ago
• joshfaust / Windows_Hunt
  Analyze Windows Systems for common and unique vulnerabilities
  ☆9Updated 2 years ago
• mdecrevoisier / Windows-authentication-brutforce-cheatsheet
  Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.
  ☆18Updated last year
• fatihsirin / Tweettioc-Splunk-App
  Tweettioc Splunk App
  ☆20Updated 4 years ago
• mgeeky / EvilClippy
  A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro…
  ☆24Updated 2 years ago
• mattnotmax / hash_hunter
  Command-line tool to search for malware samples in various repositories
  ☆10Updated 3 years ago
• EspressoCake / MITRE_ATTACK_CLI
  CLI Search for Security Operators of MITRE ATT&CK URLs
  ☆16Updated 2 years ago
• ACE-Responder / rpcfirewall-extended-telemetry
  ☆14Updated last year
• mr-r3b00t / parse_win_log
  ☆14Updated 2 years ago
• PwnDexter / Rubeus-to-Hashcat
  Converts / formats Rubeus kerberoasting output into Hashcat usable format
  ☆11Updated 5 years ago
• elceef / yara-rulz
  Collection of generic YARA rules
  ☆16Updated 11 months ago
• jfmaes / Emulation-Workshop
  The repository accompanying the Buer Emulation workshop
  ☆24Updated 3 years ago