Alternatives and similar repositories for thug:

Users that are interested in thug are comparing it to the libraries listed below

• GoSecure / malboxes
  Builds malware analysis Windows VMs so that you don't have to.
  ☆1,039Updated 3 years ago
• certsocietegenerale / fame
  FAME Automates Malware Evaluation
  ☆882Updated last month
• VirusTotal / yara-python
  The Python interface for YARA
  ☆684Updated last week
• tomchop / malcom
  Malcom - Malware Communications Analyzer
  ☆1,157Updated 7 years ago
• MITRECND / chopshop
  Protocol Analysis/Decoder Framework
  ☆491Updated 2 years ago
• Rurik / Noriben
  Noriben - Portable, Simple, Malware Analysis Sandbox
  ☆1,143Updated last year
• viper-framework / viper
  Binary analysis and management framework
  ☆1,542Updated last year
• omriher / CapTipper
  Malicious HTTP traffic explorer
  ☆717Updated 2 years ago
• hatching / vmcloak
  Automated Virtual Machine Generation and Cloaking for Cuckoo Sandbox.
  ☆496Updated 10 months ago
• DinoTools / dionaea
  Home of the dionaea honeypot
  ☆738Updated 7 months ago
• crits / crits
  CRITs - Collaborative Research Into Threats
  ☆900Updated 5 years ago
• mitre / multiscanner
  Modular file scanning/analysis framework
  ☆618Updated 5 years ago
• AlienVault-Labs / AlienVaultLabs
  Alienvault Labs Projects Random Stuff
  ☆519Updated 3 years ago
• foospidy / HoneyPy
  A low to medium interaction honeypot.
  ☆467Updated last year
• mandiant / iocs
  FireEye Publicly Shared Indicators of Compromise (IOCs)
  ☆464Updated 6 years ago
• yeti-platform / yeti
  Your Everyday Threat Intelligence
  ☆1,827Updated this week
• certtools / intelmq
  IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
  ☆1,020Updated last week
• guelfoweb / peframe
  PEframe is a open source tool to perform static analysis on Portable Executable malware and malicious MS Office documents.
  ☆613Updated 2 years ago
• MISP / misp-galaxy
  Clusters and elements to attach to MISP events or attributes (like threat actors)
  ☆557Updated this week
• spender-sandbox / cuckoo-modified
  Modified edition of cuckoo
  ☆397Updated 7 years ago
• krmaxwell / maltrieve
  A tool to retrieve malware directly from the source for security researchers.
  ☆562Updated 7 years ago
• Neo23x0 / yarGen
  yarGen is a generator for YARA rules
  ☆1,617Updated 9 months ago
• 0x4D31 / fatt
  FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network …
  ☆664Updated last year
• DefensePointSecurity / threat_note
  DPS' Lightweight Investigation Notebook
  ☆427Updated last year
• CIRCL / AIL-framework
  AIL framework - Analysis Information Leak framework. Project moved to https://github.com/ail-project
  ☆1,319Updated this week
• google / rekall
  Rekall Memory Forensic Framework
  ☆1,946Updated 4 years ago
• ctxis / CAPE
  Malware Configuration And Payload Extraction
  ☆753Updated 4 months ago
• KasperskyLab / klara
  Kaspersky's GReAT KLara
  ☆707Updated 8 months ago
• pan-unit42 / iocs
  Indicators from Unit 42 Public Reports
  ☆708Updated 2 weeks ago
• mlsecproject / combine
  Tool to gather Threat Intelligence indicators from publicly available sources
  ☆658Updated 6 years ago