Alternatives and similar repositories for freki

Users that are interested in freki are comparing it to the libraries listed below

• danielpoliakov / lisa
  Sandbox for automated Linux malware analysis.
  ☆481Updated 2 years ago
• lucky-luk3 / Grafiki
  Threat Hunting tool about Sysmon and graphs
  ☆334Updated 2 years ago
• saferwall / saferwall
  Collaborative Malware Analysis Platform at Scale
  ☆756Updated 3 months ago
• CERT-Polska / karton
  Distributed malware processing framework based on Python, Redis and S3.
  ☆434Updated this week
• Neo23x0 / munin
  Online hash checker for Virustotal and other services
  ☆831Updated 4 months ago
• DFIRKuiper / Kuiper
  Digital Forensics Investigation Platform
  ☆838Updated 9 months ago
• StrangerealIntel / CyberThreatIntel
  Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups
  ☆712Updated 2 years ago
• ninoseki / eml_analyzer
  An application to analyze the EML file
  ☆292Updated this week
• thalesgroup-cert / Watcher
  Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
  ☆941Updated this week
• mandiant / stringsifter
  A machine learning tool that ranks strings based on their relevance for malware analysis.
  ☆729Updated 2 months ago
• spaceraccoon / manuka
  A modular OSINT honeypot for blue teamers
  ☆337Updated 2 years ago
• cert-ee / cuckoo3
  Cuckoo3 is a Python 3 open source automated malware analysis system.
  ☆741Updated last month
• ninoseki / mihari
  A query aggregator for OSINT based threat hunting
  ☆904Updated this week
• AndrewRathbun / DFIRMindMaps
  A repository of DFIR-related Mind Maps geared towards the visual learners!
  ☆527Updated 2 years ago
• claroty / arya
  Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.
  ☆253Updated 2 years ago
• captainGeech42 / ransomwatch
  Ransomware leak site monitoring
  ☆313Updated 3 years ago
• InQuest / yara-rules
  A collection of YARA rules we wish to share with the world, most probably referenced from http://blog.inquest.net.
  ☆378Updated 3 years ago
• nbeede / BoomBox
  Automatic deployment of Cuckoo Sandbox malware lab using Packer and Vagrant
  ☆237Updated 2 years ago
• qeeqbox / chameleon
  19 Customizable honeypots for monitoring network traffic, bots activities and username\password credentials (DNS, HTTP Proxy, HTTP, HTTPS…
  ☆701Updated 2 years ago
• dfirtrack / dfirtrack
  DFIRTrack - The Incident Response Tracking Application
  ☆523Updated 11 months ago
• StrangerealIntel / DailyIOC
  IOC from articles, tweets for archives
  ☆315Updated last year
• CERT-Polska / mwdb-core
  Malware repository component for samples & static configuration with REST API interface.
  ☆363Updated this week
• bartblaze / Yara-rules
  Collection of private Yara rules.
  ☆363Updated 2 weeks ago
• CERT-Polska / drakvuf-sandbox
  DRAKVUF Sandbox - automated hypervisor-level malware analysis system
  ☆1,167Updated this week
• wagga40 / Zircolite
  A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs
  ☆734Updated 4 months ago
• ail-project / ail-framework
  AIL framework - Analysis Information Leak framework
  ☆768Updated 2 weeks ago
• SafeEval / practical-malware-analysis
  Exercise writeups from the book Practical Malware Analysis.
  ☆226Updated 2 years ago
• InQuest / ThreatIngestor
  Extract and aggregate threat intelligence.
  ☆876Updated last year
• mandiant / ThreatPursuit-VM
  Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysi…
  ☆1,275Updated 2 years ago
• forensicanalysis / artifactcollector
  🧭 The artifactcollector is a customizable agent to collect forensic artifacts on any Windows, macOS or Linux system
  ☆291Updated 3 months ago