Alternatives and similar repositories for ANTIVIRUSxML

Users that are interested in ANTIVIRUSxML are comparing it to the libraries listed below

• stairwell-inc / threat-research
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆23Updated last year
• mohlcyber / MISP-MVISION-EDR
  Integration between MISP platform and McAfee MVISION EDR
  ☆14Updated 3 years ago
• WithSecureLabs / FLAIR
  F-Secure Lightweight Acqusition for Incident Response (FLAIR)
  ☆17Updated 4 years ago
• adulau / hashlookup-server
  Fast lookup server for NSRL and other hash database used in digital forensic
  ☆45Updated 3 years ago
• qeeqbox / octopus
  Pure Honeypots with an automated bash script
  ☆20Updated 4 years ago
• 3c7 / bazaar
  Python based CLI for MalwareBazaar
  ☆37Updated last month
• kyle-phillips / adversarial-tools
  A collection of tools adversaries commonly use in an attack.
  ☆14Updated 9 months ago
• MISP / misp-sighting-server
  MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…
  ☆15Updated last year
• cocaman / analysis_scripts
  Collection of scripts used to analyse malware or emails
  ☆20Updated 4 years ago
• MISP / yara-misp
  Export MISP attributes in Yara
  ☆12Updated 7 years ago
• SCS-Labs / TheWatchList
  Threat Feeds, Threat lists, and regular lists of known IP ranges and domains. It updates every 4 hours.
  ☆16Updated 4 years ago
• ail-project / ail-yara-rules
  A set of YARA rules for the AIL framework to detect leak or information disclosure
  ☆38Updated 7 months ago
• hjunker / ProcessBouncer
  ProcessBouncer is a simple but effective tool for blocking malware with a process-based approach. With a little fine-tuning this allows t…
  ☆24Updated 4 years ago
• jstnk9 / ETW-Almulahaza
  ETW-Almulahaza is a consumer python-based tool that help you monitor ETW events of the operating system
  ☆13Updated 3 years ago
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆22Updated 10 months ago
• mattnotmax / hash_hunter
  Command-line tool to search for malware samples in various repositories
  ☆11Updated 3 years ago
• CIRCL / yara-validator
  Validates yara rules and tries to repair the broken ones.
  ☆40Updated 5 years ago
• a4lg / fast-ssdeep-clus
  Parallel ssdeep clustering kit
  ☆20Updated 7 years ago
• mitre / human
  Caldera plugin to deploy "humans" to emulate user behavior on systems
  ☆28Updated last year
• anyrun / YARA
  ☆24Updated 9 months ago
• dfirlabs / ntfs-specimens
  NTFS file system specimens
  ☆13Updated 2 years ago
• bioniccyber / SocialMediaIntel
  A set of scripts and analysis commands to harvest Tweets and identify content of interest, meaningful search criteria, and value keywords…
  ☆20Updated 5 years ago
• gmagklaras / POFR
  Penguin OS Forensic (or Flight) Recorder
  ☆40Updated 8 months ago
• password123456 / CertVerify
  A scanner that files with compromised or untrusted code signing certificates written in python.
  ☆65Updated 2 years ago
• serrastusbear / NewDomainSearch
  Script to pull newly-registered domains and check for similarity against a provided word list.
  ☆13Updated 5 years ago
• sk4la / plast
  Modular command-line threat hunting tool & framework.
  ☆17Updated 5 years ago
• bigsnarfdude / Malware-Probabilistic-Data-Structres
  NSRL BloomFilter, Mandiant BloomFilter, Hyperloglog Malware Data Structure
  ☆15Updated 11 years ago
• ail-project / ail-feeder-twitter
  External twitter feeder for AIL framework
  ☆16Updated 2 years ago
• ninoseki / ioc-extractor
  An npm package for extracting common IoC (Indicator of Compromise) from a block of text
  ☆58Updated 3 weeks ago
• ninoseki / iocingestor
  An extendable tool to extract and aggregate IoCs from threat feeds
  ☆33Updated last year