Alternatives and similar repositories for fishy

Users that are interested in fishy are comparing it to the libraries listed below

• silascutler / DetuxNG
  The Multiplatform Linux Sandbox
  ☆16Updated last year
• google / permhash
  ☆44Updated last week
• ksen-lin / nitara2
  yet another hidden LKM hunter
  ☆29Updated 2 months ago
• dhondta / AppmemDumper
  Forensics triage tool relying on Volatility and Foremost
  ☆25Updated 2 years ago
• ail-project / ail-yara-rules
  A set of YARA rules for the AIL framework to detect leak or information disclosure
  ☆40Updated 10 months ago
• avast / yari
  YARI is an interactive debugger for YARA Language.
  ☆89Updated 3 months ago
• mandiant / capa-testfiles
  Data to test capa's code and rules.
  ☆46Updated last week
• tccontre / KnowledgeBase
  Collection of tips, tools, arsenal and techniques I've learned during RE and other CyberSecStuff
  ☆57Updated 2 months ago
• ANSSI-FR / chipsec-check
  Tools to generate a Linux distribution booting from a USB key to test hardware requirements
  ☆50Updated 8 months ago
• pygrum / siphon
  A feed of malware samples curated from threat intelligence sources.
  ☆28Updated 2 years ago
• sandflysecurity / sandfly-file-decloak
  Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.
  ☆29Updated 2 months ago
• 0xThiebaut / Signatures
  🚧 Currently transfering TLP:CLEAR rules from TLP:AMBER repository...
  ☆21Updated last year
• avast / yls
  YARA Language Server
  ☆75Updated 3 weeks ago
• milabs / kiddy
  Kiddy - (linux) kernel identity spoofer
  ☆15Updated last year
• NextronSystems / gimphash
  Imphash-like calculation on Golang binaries
  ☆49Updated 3 years ago
• Velocidex / Linpmem
  Linpmem is a linux memory acquisition tool
  ☆94Updated 5 months ago
• 0xHasanM / Autopsy-Registry-Explorer
  Autopsy Module to analyze Registry Hives
  ☆15Updated 3 years ago
• stairwell-inc / threat-research
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆23Updated last year
• ThisIsLibra / MalPull
  A multi-threaded malware sample downloader based upon given MD-5/SHA-1/SHA-256 hashes, using multiple malware databases.
  ☆30Updated 2 years ago
• Rafiot / pdfid
  Clone of PDFiD by Didier Stevens, as a package and with some improvements.
  ☆51Updated 9 years ago
• joxeankoret / deeptoad
  DeepToad is a library and a tool to clusterize similar files using fuzzy hashing
  ☆20Updated 5 years ago
• adulau / hashlookup-server
  Fast lookup server for NSRL and other hash database used in digital forensic
  ☆48Updated 3 years ago
• memoryforensics1 / VolExp
  volatility explorer
  ☆92Updated 5 years ago
• Orange-OpenSource / decret
  DEbian Cve REproducer Tool
  ☆27Updated last week
• michelcrypt4d4mus / yaralyzer
  Visually inspect and force decode YARA and regex matches found in both binary and text data with colors. Lots of colors.
  ☆143Updated 2 months ago
• signalblur / impelf
  "ImpELF: A Python-based ELF hashing utility that generates unique fingerprints for ELF binaries using their imported functions and librar…
  ☆15Updated last year
• ernw / quarantine-formats
  Documentation and parsers for different anti-virus quarantine formats.
  ☆42Updated 5 years ago
• user1342 / ThingFinder
  ThingFinder is a tool designed to facilitate searching and analysing code, whether it's source code or compiled binary executables. It pr…
  ☆38Updated last year
• g4l4drim / ChromeDump
  ☆55Updated last year
• Abyss-W4tcher / volatility-scripts
  This repository contains a variety of plugins and scripts, related to the Volatility framework.
  ☆17Updated 10 months ago